From 541da5155e279386ebf169e9a13100f8f502ed66 Mon Sep 17 00:00:00 2001 From: Crowdin Bot Date: Sat, 10 Feb 2024 09:31:24 +0000 Subject: [PATCH] New Crowdin translations by GitHub Action --- i18n/ar/android.md | 284 ++++++++++++--------- i18n/ar/calendar.md | 91 ++++--- i18n/ar/cloud.md | 88 ++++--- i18n/ar/email-clients.md | 340 ++++++++++++++----------- i18n/ar/financial-services.md | 85 ++++--- i18n/ar/router.md | 53 ++-- i18n/bn-IN/android.md | 286 ++++++++++++--------- i18n/bn-IN/calendar.md | 91 ++++--- i18n/bn-IN/cloud.md | 88 ++++--- i18n/bn-IN/email-clients.md | 340 ++++++++++++++----------- i18n/bn-IN/financial-services.md | 85 ++++--- i18n/bn-IN/router.md | 53 ++-- i18n/bn/android.md | 284 ++++++++++++--------- i18n/bn/calendar.md | 91 ++++--- i18n/bn/cloud.md | 88 ++++--- i18n/bn/email-clients.md | 340 ++++++++++++++----------- i18n/bn/financial-services.md | 85 ++++--- i18n/bn/router.md | 53 ++-- i18n/cs/android.md | 284 ++++++++++++--------- i18n/cs/calendar.md | 91 ++++--- i18n/cs/cloud.md | 88 ++++--- i18n/cs/email-clients.md | 340 ++++++++++++++----------- i18n/cs/financial-services.md | 85 ++++--- i18n/cs/router.md | 53 ++-- i18n/de/android.md | 304 ++++++++++++---------- i18n/de/calendar.md | 91 ++++--- i18n/de/cloud.md | 88 ++++--- i18n/de/email-clients.md | 340 ++++++++++++++----------- i18n/de/financial-services.md | 85 ++++--- i18n/de/router.md | 53 ++-- i18n/el/android.md | 284 ++++++++++++--------- i18n/el/calendar.md | 91 ++++--- i18n/el/cloud.md | 88 ++++--- i18n/el/email-clients.md | 340 ++++++++++++++----------- i18n/el/financial-services.md | 85 ++++--- i18n/el/router.md | 53 ++-- i18n/eo/android.md | 284 ++++++++++++--------- i18n/eo/calendar.md | 91 ++++--- i18n/eo/cloud.md | 88 ++++--- i18n/eo/email-clients.md | 340 ++++++++++++++----------- i18n/eo/financial-services.md | 85 ++++--- i18n/eo/router.md | 53 ++-- i18n/es/android.md | 303 ++++++++++++---------- i18n/es/calendar.md | 95 ++++--- i18n/es/cloud.md | 88 ++++--- i18n/es/email-clients.md | 342 ++++++++++++++----------- i18n/es/financial-services.md | 85 ++++--- i18n/es/router.md | 55 ++-- i18n/fa/android.md | 284 ++++++++++++--------- i18n/fa/calendar.md | 91 ++++--- i18n/fa/cloud.md | 88 ++++--- i18n/fa/email-clients.md | 340 ++++++++++++++----------- i18n/fa/financial-services.md | 85 ++++--- i18n/fa/router.md | 53 ++-- i18n/fr/android.md | 294 +++++++++++++--------- i18n/fr/calendar.md | 93 ++++--- i18n/fr/cloud.md | 88 ++++--- i18n/fr/email-clients.md | 344 ++++++++++++++----------- i18n/fr/financial-services.md | 85 ++++--- i18n/fr/router.md | 55 ++-- i18n/he/android.md | 292 ++++++++++++--------- i18n/he/calendar.md | 93 ++++--- i18n/he/cloud.md | 88 ++++--- i18n/he/email-clients.md | 342 ++++++++++++++----------- i18n/he/financial-services.md | 85 ++++--- i18n/he/router.md | 55 ++-- i18n/hi/android.md | 284 ++++++++++++--------- i18n/hi/calendar.md | 91 ++++--- i18n/hi/cloud.md | 88 ++++--- i18n/hi/email-clients.md | 340 ++++++++++++++----------- i18n/hi/financial-services.md | 85 ++++--- i18n/hi/router.md | 53 ++-- i18n/hu/android.md | 284 ++++++++++++--------- i18n/hu/calendar.md | 91 ++++--- i18n/hu/cloud.md | 88 ++++--- i18n/hu/email-clients.md | 342 ++++++++++++++----------- i18n/hu/financial-services.md | 85 ++++--- i18n/hu/router.md | 47 ++-- i18n/id/android.md | 294 +++++++++++++--------- i18n/id/calendar.md | 91 ++++--- i18n/id/cloud.md | 88 ++++--- i18n/id/email-clients.md | 340 ++++++++++++++----------- i18n/id/financial-services.md | 85 ++++--- i18n/id/router.md | 53 ++-- i18n/it/android.md | 300 ++++++++++++---------- i18n/it/calendar.md | 95 ++++--- i18n/it/cloud.md | 88 ++++--- i18n/it/email-clients.md | 343 ++++++++++++++----------- i18n/it/financial-services.md | 85 ++++--- i18n/it/router.md | 57 +++-- i18n/ja/android.md | 288 ++++++++++++--------- i18n/ja/calendar.md | 91 ++++--- i18n/ja/cloud.md | 88 ++++--- i18n/ja/email-clients.md | 342 ++++++++++++++----------- i18n/ja/financial-services.md | 85 ++++--- i18n/ja/router.md | 53 ++-- i18n/ko/android.md | 294 +++++++++++++--------- i18n/ko/calendar.md | 93 ++++--- i18n/ko/cloud.md | 88 ++++--- i18n/ko/email-clients.md | 342 ++++++++++++++----------- i18n/ko/financial-services.md | 85 ++++--- i18n/ko/router.md | 55 ++-- i18n/ku-IQ/android.md | 288 ++++++++++++--------- i18n/ku-IQ/calendar.md | 91 ++++--- i18n/ku-IQ/cloud.md | 88 ++++--- i18n/ku-IQ/email-clients.md | 340 ++++++++++++++----------- i18n/ku-IQ/financial-services.md | 85 ++++--- i18n/ku-IQ/router.md | 53 ++-- i18n/nl/android.md | 290 ++++++++++++--------- i18n/nl/calendar.md | 91 ++++--- i18n/nl/cloud.md | 88 ++++--- i18n/nl/email-clients.md | 342 ++++++++++++++----------- i18n/nl/financial-services.md | 85 ++++--- i18n/nl/router.md | 55 ++-- i18n/pl/android.md | 286 ++++++++++++--------- i18n/pl/calendar.md | 91 ++++--- i18n/pl/cloud.md | 88 ++++--- i18n/pl/email-clients.md | 340 ++++++++++++++----------- i18n/pl/financial-services.md | 85 ++++--- i18n/pl/router.md | 53 ++-- i18n/pt-BR/android.md | 288 ++++++++++++--------- i18n/pt-BR/calendar.md | 91 ++++--- i18n/pt-BR/cloud.md | 88 ++++--- i18n/pt-BR/email-clients.md | 340 ++++++++++++++----------- i18n/pt-BR/financial-services.md | 85 ++++--- i18n/pt-BR/router.md | 53 ++-- i18n/pt/android.md | 312 +++++++++++++---------- i18n/pt/calendar.md | 97 +++---- i18n/pt/cloud.md | 94 ++++--- i18n/pt/email-clients.md | 391 ++++++++++++++++------------- i18n/pt/financial-services.md | 96 ++++--- i18n/pt/router.md | 57 +++-- i18n/ru/android.md | 294 +++++++++++++--------- i18n/ru/calendar.md | 93 ++++--- i18n/ru/cloud.md | 89 ++++--- i18n/ru/email-clients.md | 342 ++++++++++++++----------- i18n/ru/financial-services.md | 85 ++++--- i18n/ru/router.md | 55 ++-- i18n/sv/android.md | 284 ++++++++++++--------- i18n/sv/calendar.md | 91 ++++--- i18n/sv/cloud.md | 88 ++++--- i18n/sv/email-clients.md | 340 ++++++++++++++----------- i18n/sv/financial-services.md | 85 ++++--- i18n/sv/router.md | 53 ++-- i18n/tr/android.md | 284 ++++++++++++--------- i18n/tr/calendar.md | 91 ++++--- i18n/tr/cloud.md | 88 ++++--- i18n/tr/email-clients.md | 340 ++++++++++++++----------- i18n/tr/financial-services.md | 85 ++++--- i18n/tr/router.md | 47 ++-- i18n/uk/android.md | 284 ++++++++++++--------- i18n/uk/calendar.md | 91 ++++--- i18n/uk/cloud.md | 88 ++++--- i18n/uk/email-clients.md | 340 ++++++++++++++----------- i18n/uk/financial-services.md | 85 ++++--- i18n/uk/router.md | 45 ++-- i18n/vi/android.md | 303 ++++++++++++---------- i18n/vi/calendar.md | 126 +++++----- i18n/vi/cloud.md | 99 ++++---- i18n/vi/email-clients.md | 355 +++++++++++++++----------- i18n/vi/financial-services.md | 107 ++++---- i18n/vi/router.md | 56 +++-- i18n/zh-Hant/android.md | 306 ++++++++++++---------- i18n/zh-Hant/calendar.md | 94 +++---- i18n/zh-Hant/cloud.md | 88 ++++--- i18n/zh-Hant/email-clients.md | 342 ++++++++++++++----------- i18n/zh-Hant/financial-services.md | 85 ++++--- i18n/zh-Hant/router.md | 55 ++-- i18n/zh/android.md | 290 ++++++++++++--------- i18n/zh/calendar.md | 91 ++++--- i18n/zh/cloud.md | 88 ++++--- i18n/zh/email-clients.md | 340 ++++++++++++++----------- i18n/zh/financial-services.md | 85 ++++--- i18n/zh/router.md | 53 ++-- 174 files changed, 16195 insertions(+), 11499 deletions(-) diff --git a/i18n/ar/android.md b/i18n/ar/android.md index b2c2d3d0..6a650455 100644 --- a/i18n/ar/android.md +++ b/i18n/ar/android.md @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. +End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** is the best choice when it comes to privacy and security. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** is the best choice when it comes to privacy and security. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Operating Systems diff --git a/i18n/ar/calendar.md b/i18n/ar/calendar.md index 07671ab9..fd26697b 100644 --- a/i18n/ar/calendar.md +++ b/i18n/ar/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/ar/cloud.md b/i18n/ar/cloud.md index 9d15aa37..34b98b3d 100644 --- a/i18n/ar/cloud.md +++ b/i18n/ar/cloud.md @@ -10,29 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "Looking for Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Requirements diff --git a/i18n/ar/email-clients.md b/i18n/ar/email-clients.md index 4632b404..8ff4a1f0 100644 --- a/i18n/ar/email-clients.md +++ b/i18n/ar/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Recommended Configuration @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/ar/financial-services.md b/i18n/ar/financial-services.md index 6cedefcb..60641cd0 100644 --- a/i18n/ar/financial-services.md +++ b/i18n/ar/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/ar/router.md b/i18n/ar/router.md index 8b814e6e..870cd79e 100644 --- a/i18n/ar/router.md +++ b/i18n/ar/router.md @@ -9,32 +9,40 @@ Below are a few alternative operating systems, that can be used on routers, Wi-F ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } + + + +
You can consult OpenWrt's [table of hardware](https://openwrt.org/toh/start) to check if your device is supported. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } + + + +
OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.org/wiki/PfSense), and both projects are noted for being free and reliable firewall distributions which offer features often only found in expensive commercial firewalls. Launched in 2015, the developers of OPNsense [cited](https://docs.opnsense.org/history/thefork.html) a number of security and code-quality issues with pfSense which they felt necessitated a fork of the project, as well as concerns about Netgate's majority acquisition of pfSense and the future direction of the pfSense project. @@ -42,9 +50,12 @@ OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.or **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Must be open source. - Must receive regular updates. diff --git a/i18n/bn-IN/android.md b/i18n/bn-IN/android.md index 15537ab0..f592bdc7 100644 --- a/i18n/bn-IN/android.md +++ b/i18n/bn-IN/android.md @@ -1,7 +1,7 @@ --- meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" title: "অ্যান্ড্রয়েড" -icon: 'ফন্টঅ্যাওসাম/ ব্র্যান্ড / অ্যান্ড্রয়েড' +icon: 'simple/android' description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- পুরোনো ডিভাইসগুলিতে (যেমন GrapheneOS CalyxOS এর "extended support" ডিভাইসগুলো) সম্পুর্ন সিকিউরিটি থাকে না, OEM সাপোর্ট দেওয়া বন্ধ করে দেওয়ার জন্য। যেকোনো সফটওয়্যার ইনস্টলড থাকুক না কেনো এইসমস্ত ডিভাইসগুলো কে কখনোই সম্পূর্ণ ভাবে নিরাপদ বিবেচনা করা যাবে না +পুরোনো ডিভাইসগুলিতে (যেমন GrapheneOS CalyxOS এর "extended support" ডিভাইসগুলো) সম্পুর্ন সিকিউরিটি থাকে না, OEM সাপোর্ট দেওয়া বন্ধ করে দেওয়ার জন্য। যেকোনো সফটওয়্যার ইনস্টলড থাকুক না কেনো এইসমস্ত ডিভাইসগুলো কে কখনোই সম্পূর্ণ ভাবে নিরাপদ বিবেচনা করা যাবে না + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - প্রাইভেসি এবং সিকিউরিটি এর জন্য **GrapheneOS** সবথেকে ভালো। - - GrapheneOS তে কিছু বাড়তি [সিকিউরিটি](https://en.wikipedia.org/wiki/Hardening_(computing)) এবং প্রাইভেসি রয়েছে। It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +প্রাইভেসি এবং সিকিউরিটি এর জন্য **GrapheneOS** সবথেকে ভালো। + +GrapheneOS তে কিছু বাড়তি [সিকিউরিটি](https://en.wikipedia.org/wiki/Hardening_(computing)) এবং প্রাইভেসি রয়েছে। It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Operating Systems diff --git a/i18n/bn-IN/calendar.md b/i18n/bn-IN/calendar.md index 07671ab9..fd26697b 100644 --- a/i18n/bn-IN/calendar.md +++ b/i18n/bn-IN/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/bn-IN/cloud.md b/i18n/bn-IN/cloud.md index 9d15aa37..34b98b3d 100644 --- a/i18n/bn-IN/cloud.md +++ b/i18n/bn-IN/cloud.md @@ -10,29 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "Looking for Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Requirements diff --git a/i18n/bn-IN/email-clients.md b/i18n/bn-IN/email-clients.md index 4632b404..8ff4a1f0 100644 --- a/i18n/bn-IN/email-clients.md +++ b/i18n/bn-IN/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Recommended Configuration @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/bn-IN/financial-services.md b/i18n/bn-IN/financial-services.md index 6cedefcb..60641cd0 100644 --- a/i18n/bn-IN/financial-services.md +++ b/i18n/bn-IN/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/bn-IN/router.md b/i18n/bn-IN/router.md index 8b814e6e..870cd79e 100644 --- a/i18n/bn-IN/router.md +++ b/i18n/bn-IN/router.md @@ -9,32 +9,40 @@ Below are a few alternative operating systems, that can be used on routers, Wi-F ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } + + + +
You can consult OpenWrt's [table of hardware](https://openwrt.org/toh/start) to check if your device is supported. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } + + + +
OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.org/wiki/PfSense), and both projects are noted for being free and reliable firewall distributions which offer features often only found in expensive commercial firewalls. Launched in 2015, the developers of OPNsense [cited](https://docs.opnsense.org/history/thefork.html) a number of security and code-quality issues with pfSense which they felt necessitated a fork of the project, as well as concerns about Netgate's majority acquisition of pfSense and the future direction of the pfSense project. @@ -42,9 +50,12 @@ OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.or **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Must be open source. - Must receive regular updates. diff --git a/i18n/bn/android.md b/i18n/bn/android.md index b2c2d3d0..6a650455 100644 --- a/i18n/bn/android.md +++ b/i18n/bn/android.md @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. +End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** is the best choice when it comes to privacy and security. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** is the best choice when it comes to privacy and security. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Operating Systems diff --git a/i18n/bn/calendar.md b/i18n/bn/calendar.md index 07671ab9..fd26697b 100644 --- a/i18n/bn/calendar.md +++ b/i18n/bn/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/bn/cloud.md b/i18n/bn/cloud.md index 9d15aa37..34b98b3d 100644 --- a/i18n/bn/cloud.md +++ b/i18n/bn/cloud.md @@ -10,29 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "Looking for Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Requirements diff --git a/i18n/bn/email-clients.md b/i18n/bn/email-clients.md index 4632b404..8ff4a1f0 100644 --- a/i18n/bn/email-clients.md +++ b/i18n/bn/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Recommended Configuration @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/bn/financial-services.md b/i18n/bn/financial-services.md index 6cedefcb..60641cd0 100644 --- a/i18n/bn/financial-services.md +++ b/i18n/bn/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/bn/router.md b/i18n/bn/router.md index 8b814e6e..870cd79e 100644 --- a/i18n/bn/router.md +++ b/i18n/bn/router.md @@ -9,32 +9,40 @@ Below are a few alternative operating systems, that can be used on routers, Wi-F ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } + + + +
You can consult OpenWrt's [table of hardware](https://openwrt.org/toh/start) to check if your device is supported. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } + + + +
OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.org/wiki/PfSense), and both projects are noted for being free and reliable firewall distributions which offer features often only found in expensive commercial firewalls. Launched in 2015, the developers of OPNsense [cited](https://docs.opnsense.org/history/thefork.html) a number of security and code-quality issues with pfSense which they felt necessitated a fork of the project, as well as concerns about Netgate's majority acquisition of pfSense and the future direction of the pfSense project. @@ -42,9 +50,12 @@ OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.or **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Must be open source. - Must receive regular updates. diff --git a/i18n/cs/android.md b/i18n/cs/android.md index b2c2d3d0..6a650455 100644 --- a/i18n/cs/android.md +++ b/i18n/cs/android.md @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. +End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** is the best choice when it comes to privacy and security. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** is the best choice when it comes to privacy and security. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Operating Systems diff --git a/i18n/cs/calendar.md b/i18n/cs/calendar.md index 07671ab9..fd26697b 100644 --- a/i18n/cs/calendar.md +++ b/i18n/cs/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/cs/cloud.md b/i18n/cs/cloud.md index 9d15aa37..34b98b3d 100644 --- a/i18n/cs/cloud.md +++ b/i18n/cs/cloud.md @@ -10,29 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "Looking for Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Requirements diff --git a/i18n/cs/email-clients.md b/i18n/cs/email-clients.md index 4632b404..8ff4a1f0 100644 --- a/i18n/cs/email-clients.md +++ b/i18n/cs/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Recommended Configuration @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/cs/financial-services.md b/i18n/cs/financial-services.md index 6cedefcb..60641cd0 100644 --- a/i18n/cs/financial-services.md +++ b/i18n/cs/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/cs/router.md b/i18n/cs/router.md index 8b814e6e..870cd79e 100644 --- a/i18n/cs/router.md +++ b/i18n/cs/router.md @@ -9,32 +9,40 @@ Below are a few alternative operating systems, that can be used on routers, Wi-F ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } + + + +
You can consult OpenWrt's [table of hardware](https://openwrt.org/toh/start) to check if your device is supported. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } + + + +
OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.org/wiki/PfSense), and both projects are noted for being free and reliable firewall distributions which offer features often only found in expensive commercial firewalls. Launched in 2015, the developers of OPNsense [cited](https://docs.opnsense.org/history/thefork.html) a number of security and code-quality issues with pfSense which they felt necessitated a fork of the project, as well as concerns about Netgate's majority acquisition of pfSense and the future direction of the pfSense project. @@ -42,9 +50,12 @@ OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.or **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Must be open source. - Must receive regular updates. diff --git a/i18n/de/android.md b/i18n/de/android.md index c1a92400..6a650455 100644 --- a/i18n/de/android.md +++ b/i18n/de/android.md @@ -1,14 +1,14 @@ --- -meta_title: "Android-Empfehlungen: GrapheneOS und DivestOS - Privacy Guides" +meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" title: "Android" icon: 'simple/android' -description: Du kannst das Betriebssystem deines Android-Handys mit diesen sicheren und Privatsphäre-freundlichen Alternativen ersetzen. +description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: - "@context": http://schema.org "@type": WebPage - name: Private Android-Betriebssysteme + name: Private Android Operating Systems url: "./" - "@context": http://schema.org @@ -16,14 +16,14 @@ schema: name: Android image: /assets/img/android/android.svg url: https://source.android.com/ - sameAs: https://de.wikipedia.org/wiki/Android_(Betriebssystem) + sameAs: https://en.wikipedia.org/wiki/Android_(operating_system) - "@context": http://schema.org "@type": CreativeWork name: GrapheneOS image: /assets/img/android/grapheneos.svg url: https://grapheneos.org/ - sameAs: https://de.wikipedia.org/wiki/GrapheneOS + sameAs: https://en.wikipedia.org/wiki/GrapheneOS subjectOf: "@context": http://schema.org "@type": WebPage @@ -47,7 +47,7 @@ schema: "@type": Brand name: Google image: /assets/img/android/google-pixel.png - sameAs: https://de.wikipedia.org/wiki/Pixel_(Google) + sameAs: https://en.wikipedia.org/wiki/Google_Pixel review: "@type": Review author: @@ -68,13 +68,13 @@ schema: - "@context": http://schema.org "@type": MobileApplication - name: Sichere Kamera + name: Secure Camera applicationCategory: Utilities operatingSystem: Android - "@context": http://schema.org "@type": MobileApplication - name: Sicherer PDF-Viewer + name: Secure PDF Viewer applicationCategory: Utilities operatingSystem: Android --- @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. +End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** is the best choice when it comes to privacy and security. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** is the best choice when it comes to privacy and security. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). -### Sichere Kamera +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
+ +### Secure Camera + +
+ +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. -### Sicherer PDF-Viewer +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). -!!! recommendation +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +### Secure PDF Viewer + +
+ +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Operating Systems diff --git a/i18n/de/calendar.md b/i18n/de/calendar.md index 07671ab9..fd26697b 100644 --- a/i18n/de/calendar.md +++ b/i18n/de/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/de/cloud.md b/i18n/de/cloud.md index 9d15aa37..34b98b3d 100644 --- a/i18n/de/cloud.md +++ b/i18n/de/cloud.md @@ -10,29 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "Looking for Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Requirements diff --git a/i18n/de/email-clients.md b/i18n/de/email-clients.md index d34fc862..c3621a1c 100644 --- a/i18n/de/email-clients.md +++ b/i18n/de/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Empfohlene Konfiguration @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/de/financial-services.md b/i18n/de/financial-services.md index 6cedefcb..60641cd0 100644 --- a/i18n/de/financial-services.md +++ b/i18n/de/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/de/router.md b/i18n/de/router.md index 2a31ddca..3c6bd9bb 100644 --- a/i18n/de/router.md +++ b/i18n/de/router.md @@ -9,32 +9,40 @@ Nachstehend sind ein paar alternative Betriebssysteme gelistet, die auf Routern, ## OpenWrt -!!! recommendation +
- ![OpenWrt-Logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt-Logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt* ist ein auf Linux basierendes Betriebssystem; es wird primär auf eingebetteten Geräten zum Weiterleiten des Netzwerkverkehrs genutzt. Es enthält util-linux, uClib und BusyBox. Alle Komponenten sind für Heim-Router optimiert. - - [:octicons-home-16: Hauptseite](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Dokumentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Quellcode" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Mitwirken } +![OpenWrt-Logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt-Logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt* ist ein auf Linux basierendes Betriebssystem; es wird primär auf eingebetteten Geräten zum Weiterleiten des Netzwerkverkehrs genutzt. Es enthält util-linux, uClib und BusyBox. Alle Komponenten sind für Heim-Router optimiert. + +[:octicons-home-16: Hauptseite](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Dokumentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Quellcode" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Mitwirken } + + + +
Sie können in der [table of hardware](https://openwrt.org/toh/start) von OpenWrt nachsehen, ob Ihr Gerät unterstützt wird. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense wird in der Regel als Perimeter-Firewall, Router, Wireless Access Point, DHCP-Server, DNS-Server und VPN-Endpunkt eingesetzt. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense wird in der Regel als Perimeter-Firewall, Router, Wireless Access Point, DHCP-Server, DNS-Server und VPN-Endpunkt eingesetzt. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } + + + +
OPNsense wurde ursprünglich als Fork von [pfSense](https://en.wikipedia.org/wiki/PfSense) entwickelt. Beide Projekte sind bekannt dafür, freie und zuverlässige Firewall-Distributionen zu sein, die Funktionen bieten, die oft nur in teuren kommerziellen Firewalls zu finden sind. Die Entwickler von OPNsense [zitierten](https://docs.opnsense.org/history/thefork.html) eine Reihe von Sicherheits- und Code-Qualitätsproblemen mit pfSense, die ihrer Meinung nach eine Abspaltung des Projekts erforderlich machten, sowie Bedenken hinsichtlich der Mehrheitsübernahme von pfSense durch Netgate und der zukünftigen Ausrichtung des pfSense-Projekts. @@ -42,9 +50,12 @@ OPNsense wurde ursprünglich als Fork von [pfSense](https://en.wikipedia.org/wik **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Must be open source. - Must receive regular updates. diff --git a/i18n/el/android.md b/i18n/el/android.md index b2c2d3d0..6a650455 100644 --- a/i18n/el/android.md +++ b/i18n/el/android.md @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. +End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** is the best choice when it comes to privacy and security. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** is the best choice when it comes to privacy and security. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Operating Systems diff --git a/i18n/el/calendar.md b/i18n/el/calendar.md index 07671ab9..fd26697b 100644 --- a/i18n/el/calendar.md +++ b/i18n/el/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/el/cloud.md b/i18n/el/cloud.md index 9d15aa37..34b98b3d 100644 --- a/i18n/el/cloud.md +++ b/i18n/el/cloud.md @@ -10,29 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "Looking for Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Requirements diff --git a/i18n/el/email-clients.md b/i18n/el/email-clients.md index 4632b404..8ff4a1f0 100644 --- a/i18n/el/email-clients.md +++ b/i18n/el/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Recommended Configuration @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/el/financial-services.md b/i18n/el/financial-services.md index 6cedefcb..60641cd0 100644 --- a/i18n/el/financial-services.md +++ b/i18n/el/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/el/router.md b/i18n/el/router.md index f53fddde..76c1af4a 100644 --- a/i18n/el/router.md +++ b/i18n/el/router.md @@ -9,32 +9,40 @@ cover: router.webp ## OpenWrt -!!! recommendation +
- ![Λογότυπο OpenWrt](assets/img/router/openwrt.svg#only-light){ align=right } - ![Λογότυπο OpenWrt](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - Το **OpenWrt** είναι ένα λειτουργικό σύστημα βασισμένο στο Linux, χρησιμοποιείται κυρίως σε ενσωματωμένες συσκευές για τη δρομολόγηση της δικτυακής κίνησης. Περιλαμβάνει το util-linux, το uClibc και το BusyBox. Όλα τα εξαρτήματα έχουν βελτιστοποιηθεί για οικιακούς δρομολογητές. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } +![Λογότυπο OpenWrt](assets/img/router/openwrt.svg#only-light){ align=right } +![Λογότυπο OpenWrt](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +Το **OpenWrt** είναι ένα λειτουργικό σύστημα βασισμένο στο Linux, χρησιμοποιείται κυρίως σε ενσωματωμένες συσκευές για τη δρομολόγηση της δικτυακής κίνησης. Περιλαμβάνει το util-linux, το uClibc και το BusyBox. Όλα τα εξαρτήματα έχουν βελτιστοποιηθεί για οικιακούς δρομολογητές. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } + + + +
You can consult OpenWrt's [table of hardware](https://openwrt.org/toh/start) to check if your device is supported. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } + + + +
OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.org/wiki/PfSense), and both projects are noted for being free and reliable firewall distributions which offer features often only found in expensive commercial firewalls. Launched in 2015, the developers of OPNsense [cited](https://docs.opnsense.org/history/thefork.html) a number of security and code-quality issues with pfSense which they felt necessitated a fork of the project, as well as concerns about Netgate's majority acquisition of pfSense and the future direction of the pfSense project. @@ -42,9 +50,12 @@ OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.or **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Must be open source. - Must receive regular updates. diff --git a/i18n/eo/android.md b/i18n/eo/android.md index b2c2d3d0..6a650455 100644 --- a/i18n/eo/android.md +++ b/i18n/eo/android.md @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. +End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** is the best choice when it comes to privacy and security. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** is the best choice when it comes to privacy and security. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Operating Systems diff --git a/i18n/eo/calendar.md b/i18n/eo/calendar.md index 07671ab9..fd26697b 100644 --- a/i18n/eo/calendar.md +++ b/i18n/eo/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/eo/cloud.md b/i18n/eo/cloud.md index 9d15aa37..34b98b3d 100644 --- a/i18n/eo/cloud.md +++ b/i18n/eo/cloud.md @@ -10,29 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "Looking for Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Requirements diff --git a/i18n/eo/email-clients.md b/i18n/eo/email-clients.md index 4632b404..8ff4a1f0 100644 --- a/i18n/eo/email-clients.md +++ b/i18n/eo/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Recommended Configuration @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/eo/financial-services.md b/i18n/eo/financial-services.md index 6cedefcb..60641cd0 100644 --- a/i18n/eo/financial-services.md +++ b/i18n/eo/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/eo/router.md b/i18n/eo/router.md index 8b814e6e..870cd79e 100644 --- a/i18n/eo/router.md +++ b/i18n/eo/router.md @@ -9,32 +9,40 @@ Below are a few alternative operating systems, that can be used on routers, Wi-F ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } + + + +
You can consult OpenWrt's [table of hardware](https://openwrt.org/toh/start) to check if your device is supported. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } + + + +
OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.org/wiki/PfSense), and both projects are noted for being free and reliable firewall distributions which offer features often only found in expensive commercial firewalls. Launched in 2015, the developers of OPNsense [cited](https://docs.opnsense.org/history/thefork.html) a number of security and code-quality issues with pfSense which they felt necessitated a fork of the project, as well as concerns about Netgate's majority acquisition of pfSense and the future direction of the pfSense project. @@ -42,9 +50,12 @@ OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.or **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Must be open source. - Must receive regular updates. diff --git a/i18n/es/android.md b/i18n/es/android.md index 81d68846..c36ec0bf 100644 --- a/i18n/es/android.md +++ b/i18n/es/android.md @@ -1,14 +1,14 @@ --- -meta_title: "Recomendaciones Android: GrapheneOS y DivestOS - Privacy Guides" +meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" title: "Android" icon: 'simple/android' -description: Puedes sustituir el sistema operativo de tu teléfono Android por estas alternativas seguras y respetuosas con la privacidad. +description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: - "@context": http://schema.org "@type": WebPage - name: Sistemas Operativos Android Privados + name: Private Android Operating Systems url: "./" - "@context": http://schema.org @@ -16,14 +16,14 @@ schema: name: Android image: /assets/img/android/android.svg url: https://source.android.com/ - sameAs: https://es.wikipedia.org/wiki/Android_(operating_system) + sameAs: https://en.wikipedia.org/wiki/Android_(operating_system) - "@context": http://schema.org "@type": CreativeWork name: GrapheneOS image: /assets/img/android/grapheneos.svg url: https://grapheneos.org/ - sameAs: https://es.wikipedia.org/wiki/GrapheneOS + sameAs: https://en.wikipedia.org/wiki/GrapheneOS subjectOf: "@context": http://schema.org "@type": WebPage @@ -47,7 +47,7 @@ schema: "@type": Brand name: Google image: /assets/img/android/google-pixel.png - sameAs: https://es.wikipedia.org/wiki/Google_Pixel + sameAs: https://en.wikipedia.org/wiki/Google_Pixel review: "@type": Review author: @@ -68,13 +68,13 @@ schema: - "@context": http://schema.org "@type": MobileApplication - name: Cámara de Seguridad + name: Secure Camera applicationCategory: Utilities operatingSystem: Android - "@context": http://schema.org "@type": MobileApplication - name: Visor seguro de PDF + name: Secure PDF Viewer applicationCategory: Utilities operatingSystem: Android --- @@ -95,26 +95,31 @@ Estos son los sistemas operativos Android, dispositivos y aplicaciones que recom Recomendamos instalar uno de estos sistemas operativos Android personalizados en tu dispositivo, enumerados por orden de preferencia, en función de la compatibilidad de tu dispositivo con estos sistemas operativos. -!!! note "Nota" +
+

Nota

- Los dispositivos al final de su vida útil (como GrapheneOS o los dispositivos de "soporte extendido" de CalyxOS) no disponen de parches de seguridad completos (actualizaciones de firmware) debido a que el OEM ha interrumpido el soporte. Estos dispositivos no pueden considerarse completamente seguros independientemente del software instalado. +Los dispositivos al final de su vida útil (como GrapheneOS o los dispositivos de "soporte extendido" de CalyxOS) no disponen de parches de seguridad completos (actualizaciones de firmware) debido a que el OEM ha interrumpido el soporte. Estos dispositivos no pueden considerarse completamente seguros independientemente del software instalado. + +
### GrapheneOS -!!! recommendation +
- ![Logo de GrapheneOS](assets/img/android/grapheneos.svg#only-light){ align=right } - ![Logo de GrapheneOS](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** es la mejor opción cuando se trata de privacidad y seguridad. - - GrapheneOS proporciona mejoras [adicionales de seguridad](https://en.wikipedia.org/wiki/Hardening_(computing)) y privacidad. Dispone de un [asignador de memoria reforzado](https://github.com/GrapheneOS/hardened_malloc), permisos de red y de sensores, y otras [características de seguridad](https://grapheneos.org/features). GrapheneOS también incluye actualizaciones completas de firmware y compilaciones firmadas, por lo que el arranque verificado es totalmente compatible. - - [:octicons-home-16: Página Principal](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Política de Privacidad" } - [:octicons-info-16:](https://grapheneos.org/faq/){ .card-link title=Documentación} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Código Fuente" } - [:octicons-heart-16:](https://grapheneos.org/donate/){ .card-link title=Contribuir } +![Logo de GrapheneOS](assets/img/android/grapheneos.svg#only-light){ align=right } +![Logo de GrapheneOS](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** es la mejor opción cuando se trata de privacidad y seguridad. + +GrapheneOS proporciona mejoras [adicionales de seguridad](https://en.wikipedia.org/wiki/Hardening_(computing)) y privacidad. Dispone de un [asignador de memoria reforzado](https://github.com/GrapheneOS/hardened_malloc), permisos de red y de sensores, y otras [características de seguridad](https://grapheneos.org/features). GrapheneOS también incluye actualizaciones completas de firmware y compilaciones firmadas, por lo que el arranque verificado es totalmente compatible. + +[:octicons-home-16: Página Principal](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Política de Privacidad" } +[:octicons-info-16:](https://grapheneos.org/faq/){ .card-link title=Documentación} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Código Fuente" } +[:octicons-heart-16:](https://grapheneos.org/donate/){ .card-link title=Contribuir } + +
GrapheneOS es compatible con [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), que ejecuta [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) totalmente sandboxed como cualquier otra aplicación normal. Esto significa que puede aprovechar la mayoría de los servicios de Google Play, como [notificaciones push](https://firebase.google.com/docs/cloud-messaging/), al tiempo que le da un control total sobre sus permisos y acceso, y mientras que los contiene a un [perfil de trabajo](os/android-overview.md#work-profile) o [perfil de usuario](os/android-overview.md#user-profiles) específico de su elección. @@ -124,19 +129,21 @@ Los teléfonos Pixel de Google son los únicos dispositivos que actualmente cump ### DivestOS -!!! recommendation +
- ![Logo de DivestOS](assets/img/android/divestos.svg){ align=right } - - **DivestOS** es un soft-fork de [LineageOS](https://lineageos.org/). - DivestOS hereda muchos [dispositivos soportados](https://divestos.org/index.php?page=devices&base=LineageOS) de LineageOS. Tiene compilaciones firmadas, lo que hace posible tener [arranque verificado](https://source.android.com/security/verifiedboot) en algunos dispositivos que no son Pixel. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Servicio de Onion" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Política de Privacidad" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Código fuente" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![Logo de DivestOS](assets/img/android/divestos.svg){ align=right } + +**DivestOS** es un soft-fork de [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. Tiene compilaciones firmadas, lo que hace posible tener [arranque verificado](https://source.android.com/security/verifiedboot) en algunos dispositivos que no son Pixel. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Servicio de Onion" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Política de Privacidad" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Código fuente" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS ha automatizado la vulnerabilidad del kernel ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [parcheando](https://gitlab.com/divested-mobile/cve_checker), menos bloques propietarios, y un archivo personalizado [hosts](https://divested.dev/index.php?page=dnsbl). Su WebView reforzado, [Mulch](https://gitlab.com/divested-mobile/mulch), permite [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) para todas las arquitecturas, [partición del estado de la red](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning) y recibe actualizaciones fuera de banda. DivestOS también incluye parches de GrapheneOS para el kernel y habilita todas las características de seguridad del kernel disponibles a través de [endurecimiento defconfig](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). Todos los kernels más recientes que la versión 3.4 incluyen [saneamiento](https://lwn.net/Articles/334747/) de página completa y todos los ~22 kernels compilados por Clang tienen [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) habilitado. @@ -144,11 +151,14 @@ DivestOS implementa algunos parches de endurecimiento del sistema desarrollados DivestOS utiliza F-Droid como su tienda de aplicaciones por defecto. Por lo general [recomendamos evitar F-Droid](#f-droid), pero hacerlo en DivestOS no es viable; los desarrolladores actualizan sus aplicaciones a través de sus propios repositorios de F-Droid ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) y [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). Recomendamos desactivar la aplicación oficial de F-Droid y usar [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **con los repositorios de DivestOS activados** para mantener los componentes actualizados. Para las demás aplicaciones, se siguen aplicando nuestros métodos recomendados para obtenerlas. -!!! warning "Advertencia" +
+

Advertencia

- La actualización del firmware de DivestOS [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) y el control de calidad varían según los dispositivos que soporta. Seguimos recomendando GrapheneOS en función de la compatibilidad de tu dispositivo. Para otros dispositivos, DivestOS es una buena alternativa. - - No todos los dispositivos compatibles tienen arranque verificado y algunos lo realizan mejor que otros. +La actualización del firmware de DivestOS [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) y el control de calidad varían según los dispositivos que soporta. Seguimos recomendando GrapheneOS en función de la compatibilidad de tu dispositivo. Para otros dispositivos, DivestOS es una buena alternativa. + +No todos los dispositivos compatibles tienen arranque verificado y algunos lo realizan mejor que otros. + +
## Dispositivos Android @@ -156,7 +166,7 @@ Al comprar un dispositivo, recomendamos obtener uno lo más nuevo posible. El so Evita comprar teléfonos a operadores de redes móviles. Estos suelen tener un **bootloader bloqueado** y no admiten [desbloqueo OEM](https://source.android.com/devices/bootloader/locking_unlocking). Estas variantes de teléfono te impedirán instalar cualquier tipo de distribución alternativa de Android. -Ten mucho **cuidado** con la compra de teléfonos de segunda mano de los mercados en línea. Comprueba siempre la reputación del vendedor. Si el dispositivo es robado, existe la posibilidad de que [el IMEI esté en la lista negra](https://www.gsma.com/security/resources/imei-blacklisting/). También existe el riesgo de que se te asocie con la actividad del propietario anterior. +Ten mucho **cuidado** con la compra de teléfonos de segunda mano de los mercados en línea. Comprueba siempre la reputación del vendedor. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). También existe el riesgo de que se te asocie con la actividad del propietario anterior. Algunos consejos más sobre los dispositivos Android y la compatibilidad del sistema operativo: @@ -168,15 +178,17 @@ Algunos consejos más sobre los dispositivos Android y la compatibilidad del sis Los teléfonos Google Pixel son los **únicos **dispositivos que recomendamos comprar. Los teléfonos Pixel tienen una seguridad de hardware más fuerte que cualquier otro dispositivo Android actualmente en el mercado, debido al soporte AVB adecuado para sistemas operativos de terceros y los chips de seguridad [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) personalizados de Google que actúan como elemento seguro. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Se sabe que los dispositivos Google Pixel** tienen una buena seguridad y admiten correctamente [Verified Boot](https://source.android.com/security/verifiedboot), incluso al instalar sistemas operativos personalizados. - - A partir del **Pixel 8** y el **8 Pro**, los dispositivos Pixel reciben un mínimo de 7 años de actualizaciones de seguridad garantizadas, lo que asegura una vida útil mucho más larga en comparación con los 2-5 años que suelen ofrecer los OEM de la competencia. - - [:material-shopping: Tienda](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Se sabe que los dispositivos Google Pixel** tienen una buena seguridad y admiten correctamente [Verified Boot](https://source.android.com/security/verifiedboot), incluso al instalar sistemas operativos personalizados. + +A partir del **Pixel 8** y el **8 Pro**, los dispositivos Pixel reciben un mínimo de 7 años de actualizaciones de seguridad garantizadas, lo que asegura una vida útil mucho más larga en comparación con los 2-5 años que suelen ofrecer los OEM de la competencia. + +[:material-shopping: Tienda](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Los elementos seguros como el Titan M2 son más limitados que el entorno de ejecución confiable del procesador utilizado por la mayoría de los otros teléfonos, ya que solo se utilizan para el almacenamiento secreto, la certificación de hardware y la limitación de velocidad, no para ejecutar programas "confiables". Los teléfonos sin un Elemento Seguro tienen que utilizar el TEE para *todas* esas funciones, lo que resulta en una mayor superficie de ataque. @@ -198,43 +210,53 @@ En este sitio recomendamos una amplia variedad de aplicaciones para Android. Las ### Shelter -!!! recommendation +
- ![Logotipo de Shelter](assets/img/android/shelter.svg){ align=right } - - **Shelter** es una aplicación que te ayuda a aprovechar la funcionalidad perfil de trabajo de Android para aislar o duplicar aplicaciones en tu dispositivo. - - Shelter permite bloquear la búsqueda de contactos entre perfiles y compartir archivos entre perfiles a través del gestor de archivos predeterminado ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repositorio](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Código Fuente" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribuir } +![Logotipo de Shelter](assets/img/android/shelter.svg){ align=right } -!!! warning "Advertencia" +**Shelter** es una aplicación que te ayuda a aprovechar la funcionalidad perfil de trabajo de Android para aislar o duplicar aplicaciones en tu dispositivo. - Se recomienda Shelter en lugar de [Insular](https://secure-system.gitlab.io/Insular/) e [Island](https://github.com/oasisfeng/island), ya que admite [bloqueo de búsqueda de contactos](https://secure-system.gitlab.io/Insular/faq.html). - - Al usar Shelter, está depositando toda su confianza en su desarrollador, ya que Shelter actúa como [Administrador de dispositivos](https://developer.android.com/guide/topics/admin/device-admin) para crear el perfil de trabajo, y tiene un amplio acceso a los datos almacenados en él. +Shelter permite bloquear la búsqueda de contactos entre perfiles y compartir archivos entre perfiles a través del gestor de archivos predeterminado ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). -### Cámara de Seguridad +[:octicons-repo-16: Repositorio](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Código Fuente" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribuir } -!!! recommendation +
- ![Logo de Secure Camera](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Logo de Secure camera](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** es una aplicación de cámara centrada en la privacidad y la seguridad que puede capturar imágenes, vídeos y códigos QR. Las extensiones de proveedor de CameraX (Retrato, HDR, Visión nocturna, Retoque facial y Auto) también son compatibles con los dispositivos disponibles. - - [:octicons-repo-16: Repositorio](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentación} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Código fuente" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribuir } - - ??? downloads "Descargas" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +
+

Advertencia

+ +Se recomienda Shelter en lugar de [Insular](https://secure-system.gitlab.io/Insular/) e [Island](https://github.com/oasisfeng/island), ya que admite [bloqueo de búsqueda de contactos](https://secure-system.gitlab.io/Insular/faq.html). + +Al usar Shelter, está depositando toda su confianza en su desarrollador, ya que Shelter actúa como [Administrador de dispositivos](https://developer.android.com/guide/topics/admin/device-admin) para crear el perfil de trabajo, y tiene un amplio acceso a los datos almacenados en él. + +
+ +### Secure Camera + +
+ +![Logo de Secure Camera](assets/img/android/secure_camera.svg#only-light){ align=right } +![Logo de Secure camera](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** es una aplicación de cámara centrada en la privacidad y la seguridad que puede capturar imágenes, vídeos y códigos QR. Las extensiones de proveedor de CameraX (Retrato, HDR, Visión nocturna, Retoque facial y Auto) también son compatibles con los dispositivos disponibles. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Las principales características de privacidad incluyen: @@ -242,49 +264,63 @@ Las principales características de privacidad incluyen: - Uso de la nueva API [Media](https://developer.android.com/training/data-storage/shared/media), por lo que no se requieren [permisos de almacenamiento ](https://developer.android.com/training/data-storage) - No se requiere permiso de micrófono a menos que desees grabar sonido -!!! note "Nota" +
+

Nota

- Actualmente no se eliminan los metadatos de los archivos de vídeo, pero está previsto hacerlo. - - Los metadatos de orientación de la imagen no se borran. Si habilitas la ubicación (en la cámara segura), * * tampoco se eliminará * *. Si quieres borrarlo más tarde tendrás que utilizar una aplicación externa como [ExifEraser](data-redaction.md#exiferaser). +Actualmente no se eliminan los metadatos de los archivos de vídeo, pero está previsto hacerlo. -### Visor seguro de PDF +Los metadatos de orientación de la imagen no se borran. Si habilitas la ubicación (en la cámara segura), * * tampoco se eliminará * *. Si quieres borrarlo más tarde tendrás que utilizar una aplicación externa como [ExifEraser](data-redaction.md#exiferaser). -!!! recommendation "Recomendación" +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** es un visor de PDF basado en [pdf.js](https://en.wikipedia.org/wiki/PDF.js) que no requiere permisos. El PDF se introduce en un [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(desarrollo_software)) [webview](https://developer.android.com/guide/webapps/webview). Esto significa que no necesita permiso para acceder directamente a contenidos o archivos. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) se utiliza para garantizar que las propiedades de JavaScript y de estilo dentro de WebView sean enteramente de contenido estático. - - [:octicons-repo-16: Repositorio](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Código fuente" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribuir } - - ??? downloads "Descargas" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +### Secure PDF Viewer + +
+ +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** es un visor de PDF basado en [pdf.js](https://en.wikipedia.org/wiki/PDF.js) que no requiere permisos. El PDF se introduce en un [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(desarrollo_software)) [webview](https://developer.android.com/guide/webapps/webview). Esto significa que no necesita permiso para acceder directamente a contenidos o archivos. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) se utiliza para garantizar que las propiedades de JavaScript y de estilo dentro de WebView sean enteramente de contenido estático. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obteniendo Aplicaciones ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** es un gestor de aplicaciones que te permite instalar y actualizar aplicaciones directamente desde la página de lanzamientos propia del creador (por ejemplo, GitHub, GitLab, la página del desarrollador, etc.), en vez de una tienda de aplicaciones o repositorio centralizados. Este permite las actualizaciones en segundo plano en Android 12 y versiones más recientes. - - [:octicons-repo-16: Repositorio](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Código fuente" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribuir } - - ??? downloads "Descargas" - -[:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** es un gestor de aplicaciones que te permite instalar y actualizar aplicaciones directamente desde la página de lanzamientos propia del creador (por ejemplo, GitHub, GitLab, la página del desarrollador, etc.), en vez de una tienda de aplicaciones o repositorio centralizados. Este permite las actualizaciones en segundo plano en Android 12 y versiones más recientes. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtenium te permite descargar archivos instaladores APK desde una gran variedad de fuentes, y depende de ti asegurarte que esas fuentes y aplicaciones son legítimas. Por ejemplo, utilizar Obtainium para instalar Signal desde [la página oficial de Signal](https://signal.org/android/apk/) puede estar bien, pero realizar la instalación desde repositorios de terceros como Aptoide o APKPure puede generar riesgos adicionales. El riesgo de instalar una *actualización* maliciosa es bajo, porque Android verifica por sí mismo que todas las actualizaciones de aplicaciones estén firmadas por el mismo desarrollador de las aplicaciones existentes antes de ser instaladas. @@ -296,19 +332,24 @@ La tienda de aplicaciones de GrapheneOS está disponible en [GitHub](https://git La tienda de Google Play requiere una cuenta de Google para iniciar sesión, lo que no es ideal para la privacidad. Eso se puede evitar utilizando un cliente alternativo, como Aurora Store. -!!! recommendation +
- ![Logo Aurora Store](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** es un cliente de Google Play Store que no requiere de una cuenta de Google, Servicios Google Play, o microG para descargar aplicaciones. - - [:octicons-home-16: Página Principal](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Política de Privacidad" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Código Fuente" } - - ??? downloads "Descargas" - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Logo Aurora Store](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** es un cliente de Google Play Store que no requiere de una cuenta de Google, Servicios Google Play, o microG para descargar aplicaciones. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store no te permite descargar aplicaciones de pago con su función de cuenta anónima. Opcionalmente, puedes iniciar sesión con tu cuenta de Google en Aurora Store para descargar aplicaciones que hayas comprado, lo cuál da acceso a Google a la lista de aplicaciones que instales, sin embargo, todavía mantienes el beneficio de que no sea requerido el cliente completo de Google Play y de los Servicios de Google Play o microG en el dispositivo. @@ -373,17 +414,23 @@ Otros repositorios de terceros para F-Droid como [IzzyOnDroid](https://apt.izzys Dicho esto, los repositorios de [F-Droid](https://f-droid.org/en/packages/) e [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) son el hogar de muchas aplicaciones, lo que los convierte en una herramienta útil para buscar y descubrir aplicaciones de código abierto que se pueden descargar a través de otros medios como la Play Store, Aurora Store u obteniendo el archivo APK directamente del desarrollador. Deberías utilizar tu mejor criterio al buscar nuevas aplicaciones a través de este método y vigilar la frecuencia de actualización de la aplicación. Las aplicaciones desactualizadas pueden depender en librerías no compatibles, entre otras cosas, suponiendo un potencial riesgo de seguridad. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- En algunos raros casos, el desarrollador de una aplicación sólo la distribuirá a través de F-Droid ([Gadgetbridge](https://gadgetbridge.org/) es un ejemplo de ello). Si realmente necesitas una aplicación como esa, recomendamos utilizar el nuevo cliente [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) en vez de la aplicación original para obtenerla. F-Droid Basic puede realizar actualizaciones en segundo plano sin privilegios extendidos o root y cuenta con un conjunto limitado de características (limitando la superficie de ataque). +En algunos raros casos, el desarrollador de una aplicación sólo la distribuirá a través de F-Droid ([Gadgetbridge](https://gadgetbridge.org/) es un ejemplo de ello). Si realmente necesitas una aplicación como esa, recomendamos utilizar el nuevo cliente [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) en vez de la aplicación original para obtenerla. F-Droid Basic puede realizar actualizaciones en segundo plano sin privilegios extendidos o root y cuenta con un conjunto limitado de características (limitando la superficie de ataque). + +
## Criterios **Por favor, ten en cuenta que no estamos afiliados con ninguno de los proyectos que recomendamos.** Además de [nuestros criterios estándar](about/criteria.md), hemos desarrollado un conjunto claro de requisitos que nos permiten ofrecer recomendaciones objetivas. Sugerimos que te familiarices con esta lista, antes de decidir utilizar un proyecto y realizar tu propia investigación para asegurarte de que es la elección ideal para ti. -!!! example "Esta sección es nueva" +
+

Esta sección es nueva

- Estamos trabajando para establecer criterios definidos para cada sección de nuestro sitio, y esto puede estar sujeto a cambios. Si tienes alguna duda sobre nuestros criterios, por favor [pregunta en nuestro foro](https://discuss.privacyguides.net/latest) y no asumas que no hemos tenido en cuenta algo a la hora de hacer nuestras recomendaciones si no aparece aquí. Son muchos los factores que se tienen en cuenta y se debaten cuando recomendamos un proyecto, y documentar cada uno de ellos es un trabajo en curso. +Estamos trabajando para establecer criterios definidos para cada sección de nuestro sitio, y esto puede estar sujeto a cambios. Si tienes alguna duda sobre nuestros criterios, por favor [pregunta en nuestro foro](https://discuss.privacyguides.net/latest) y no asumas que no hemos tenido en cuenta algo a la hora de hacer nuestras recomendaciones si no aparece aquí. Son muchos los factores que se tienen en cuenta y se debaten cuando recomendamos un proyecto, y documentar cada uno de ellos es un trabajo en curso. + +
### Sistema Operativo diff --git a/i18n/es/calendar.md b/i18n/es/calendar.md index 1585ae59..4cafe213 100644 --- a/i18n/es/calendar.md +++ b/i18n/es/calendar.md @@ -1,7 +1,7 @@ --- -title: "Sincronización de Calendario" +title: "Sincronización del Calendario" icon: material/calendar -description: Calendarios contienen algunos de tus datos más sensibles; usa productos que apliquen el cifrado en reposo. +description: Calendars contain some of your most sensitive data; use products that implement encryption at rest. cover: calendar.webp --- @@ -9,48 +9,58 @@ Los calendarios contienen algunos de sus datos más sensibles; utilice productos ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** ofrece un calendario gratuito y cifrado en todas sus plataformas compatibles. Entre sus características se incluyen: E2EE automático de todos los datos, funciones de uso compartido, funcionalidad de importación/exportación, autenticación multifactor y [more](https://tuta.com/calendar-app-comparison/). - - Las funciones de calendarios múltiples y uso compartido ampliado están limitadas a los suscriptores de pago. - - [:octicons-home-16: Página Principal](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Politica de Privacidad" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentación} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Código Fuente" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribuir } - - ??? downloads "Descargas" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** ofrece un calendario gratuito y cifrado en todas sus plataformas compatibles. Entre sus características se incluyen: E2EE automático de todos los datos, funciones de uso compartido, funcionalidad de importación/exportación, autenticación multifactor y [more](https://tuta.com/calendar-app-comparison/). + +Las funciones de calendarios múltiples y uso compartido ampliado están limitadas a los suscriptores de pago. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Calendario de Proton -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** es un servicio de calendario encriptado disponible para los miembros de Proton a través de clientes web o móviles. Entre sus características se incluyen: E2EE automático de todos los datos, funciones para compartir, funcionalidad de importación/exportación y [more](https://proton.me/support/proton-calendar-guide). Los usuarios del plan gratuito obtienen acceso a 3 calendarios, mientras los usuarios con un plan de pago pueden crear hasta 25 calendarios. La funcionalidad de uso compartido extendido también se limita a los suscriptores de pago. - - [:octicons-home-16: Inicio](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Politica de privacidad" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentación} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Código fuente" } - - ??? downloads "Descargas" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** es un servicio de calendario encriptado disponible para los miembros de Proton a través de clientes web o móviles. Entre sus características se incluyen: E2EE automático de todos los datos, funciones para compartir, funcionalidad de importación/exportación y [more](https://proton.me/support/proton-calendar-guide). Los usuarios del plan gratuito obtienen acceso a 3 calendarios, mientras los usuarios con un plan de pago pueden crear hasta 25 calendarios. La funcionalidad de uso compartido extendido también se limita a los suscriptores de pago. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Lamentablemente, a fecha de enero de 2024, Proton [todavía](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) no ha publicado el código fuente de su aplicación móvil Calendar para Android o iOS. El cliente web de Proton Calendar es de código abierto. @@ -58,9 +68,12 @@ Lamentablemente, a fecha de enero de 2024, Proton [todavía](https://discuss.pri **Por favor, ten en cuenta que no estamos afiliados con ninguno de los proyectos que recomendamos.** Además de [nuestros criterios estándar](about/criteria.md), hemos desarrollado un conjunto claro de requisitos que nos permiten ofrecer recomendaciones objetivas. Sugerimos que te familiarices con esta lista, antes de decidir utilizar un proyecto y realizar tu propia investigación para asegurarte de que es la elección ideal para ti. -!!! example "Esta sección es nueva" +
+

Esta sección es nueva

- Estamos trabajando en establecer criterios definidos para cada sección de nuestra página, y esto puede estar sujeto a cambios. Si tienes alguna duda sobre nuestros criterios, por favor [pregunta en nuestro foro](https://discuss.privacyguides.net/latest) y no asumas que no hemos tenido en cuenta algo a la hora de hacer nuestras recomendaciones si no aparece aquí. Son muchos los factores que se tienen en cuenta y se debaten cuando recomendamos un proyecto, y documentar cada uno de ellos es un trabajo en curso. +Estamos trabajando en establecer criterios definidos para cada sección de nuestra página, y esto puede estar sujeto a cambios. Si tienes alguna duda sobre nuestros criterios, por favor [pregunta en nuestro foro](https://discuss.privacyguides.net/latest) y no asumas que no hemos tenido en cuenta algo a la hora de hacer nuestras recomendaciones si no aparece aquí. Son muchos los factores que se tienen en cuenta y se debaten cuando recomendamos un proyecto, y documentar cada uno de ellos es un trabajo en curso. + +
### Cualificaciones mínimas diff --git a/i18n/es/cloud.md b/i18n/es/cloud.md index 3cfbddca..585d88ec 100644 --- a/i18n/es/cloud.md +++ b/i18n/es/cloud.md @@ -10,29 +10,37 @@ Muchos proveedores de almacenamiento en la nube exigen que confíes plenamente e Si estas alternativas no se ajustan a tus necesidades, te sugerimos que busques utilizar un software de encriptación como [Cryptomator](encryption.md#cryptomator-cloud) con otro proveedor en la nube. Utilizar Cryptomator junto con **cualquier** proveedor de la nube(incluidos estos) puede ser una buena idea para reducir el riesgo de fallos de cifrado en los clientes nativos de un proveedor. -??? question "¿Buscas Nextcloud?" +
+Looking for Nextcloud? - Nextcloud es [todavía una herramienta recomendada](productivity.md) para el autoalojamiento de una suite de gestión de archivos, sin embargo no recomendamos proveedores de almacenamiento Nextcloud de terceros por el momento, porque no [recomendamos](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) la funcionalidad E2EE integrada de Nextcloud para usuarios domésticos. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Logo de Proton Drive](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** es un proveedor suizo de almacenamiento cifrado en la nube del popular proveedor de correo electrónico cifrado [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Página Principal](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Política de Privacidad" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentación} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Código Fuente" } - - ??? downloads "Descargas" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Logo de Proton Drive](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** es un proveedor suizo de almacenamiento cifrado en la nube del popular proveedor de correo electrónico cifrado [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
La aplicación web Proton Drive ha sido auditada de forma independiente por Securitum en [2021](https://proton.me/blog/security-audit-all-proton-apps), no se han facilitado todos los detalles, pero la carta de certificación de Securitum afirma lo siguiente: @@ -42,23 +50,28 @@ Los nuevos clientes móviles de Proton Drive aún no han sido auditados pública ## Tresorit -!!! recommendation +
- ![Logo de Tresorit](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** es un proveedor suizo-húngaro de almacenamiento cifrado en la nube fundado en 2011. Tresorit es propiedad de Swiss Post, el servicio postal nacional de Suiza. - - [:octicons-home-16: Página Principal](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Política de Privacidad" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentación} - - ??? downloads "Descargas" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Logo de Tresorit](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** es un proveedor suizo-húngaro de almacenamiento cifrado en la nube fundado en 2011. Tresorit es propiedad de Swiss Post, el servicio postal nacional de Suiza. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit ha recibido varias auditorías de seguridad independientes: @@ -76,9 +89,12 @@ También han recibido el Sello de Confianza Digital, una certificación de la [I **Por favor, ten en cuenta que no estamos afiliados con ninguno de los proyectos que recomendamos.** Además de [nuestros criterios estándar](about/criteria.md), hemos desarrollado un conjunto claro de requisitos que nos permiten ofrecer recomendaciones objetivas. Sugerimos que te familiarices con esta lista, antes de decidir utilizar un proyecto y realizar tu propia investigación para asegurarte de que es la elección ideal para ti. -!!! example "Esta sección es nueva" +
+

Esta sección es nueva

- Estamos trabajando en establecer criterios definidos para cada sección de nuestra página, y esto puede estar sujeto a cambios. Si tienes alguna duda sobre nuestros criterios, por favor [pregunta en nuestro foro](https://discuss.privacyguides.net/latest) y no asumas que no hemos tenido en cuenta algo a la hora de hacer nuestras recomendaciones si no aparece aquí. Hay muchos factores que se consideran y se debaten cuando recomendamos un proyecto, y documentar cada uno de ellos es un trabajo en curso. +Estamos trabajando en establecer criterios definidos para cada sección de nuestra página, y esto puede estar sujeto a cambios. Si tienes alguna duda sobre nuestros criterios, por favor [pregunta en nuestro foro](https://discuss.privacyguides.net/latest) y no asumas que no hemos tenido en cuenta algo a la hora de hacer nuestras recomendaciones si no aparece aquí. Hay muchos factores que se consideran y se debaten cuando recomendamos un proyecto, y documentar cada uno de ellos es un trabajo en curso. + +
### Requisitos Mínimos diff --git a/i18n/es/email-clients.md b/i18n/es/email-clients.md index 6462310d..e27db2a8 100644 --- a/i18n/es/email-clients.md +++ b/i18n/es/email-clients.md @@ -1,41 +1,49 @@ --- title: "Clientes de Correo Electrónico" icon: material/email-open -description: Estos clientes de correo electrónico respetan la privacidad y admiten el cifrado de correo electrónico OpenPGP. +description: These email clients are privacy-respecting and support OpenPGP email encryption. cover: email-clients.webp --- Nuestra lista de recomendaciones contiene clientes de correo electrónico que soportan [OpenPGP](encryption.md#openpgp) y una autenticación fuerte como [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth le permite utilizar la [Autenticación Multifactor](basics/multi-factor-authentication.md) y previene el robo de cuentas. -??? warning "El correo electrónico no proporciona el secreto de reenvío" +
+Email does not provide forward secrecy - Cuando se utiliza una tecnología de cifrado de extremo a extremo (E2EE, por sus siglas en inglés) como OpenPGP, el correo aún tendrá algunos [metadatos](email.md#email-metadata-overview) que no son encriptados en el encabezado del correo. - - OpenPGP tampoco soporta '[forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy)', lo que significa que si la clave privada del receptor es robada, todos los mensajes encriptados previamente con esta se encontrarán expuestos: [¿Cómo puedo proteger mis claves privadas?](basics/email-security.md) Considere utilizar un medio que brinde 'forward secrecy': - - [Comunicación en tiempo real](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Multiplataforma ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** es un cliente gratuito, de código abierto y multiplataforma, de correo electrónico, grupos de noticias y chat (XMPP, IRC, Twitter), desarrollado por la comunidad Thunderbird, y previamente por la Fundación Mozilla. - - [:octicons-home-16: Página Principal](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Política de Privacidad" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentación} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Código Fuente" } - - ??? downloads "Descargas" - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** es un cliente gratuito, de código abierto y multiplataforma, de correo electrónico, grupos de noticias y chat (XMPP, IRC, Twitter), desarrollado por la comunidad Thunderbird, y previamente por la Fundación Mozilla. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Configuración Recomendada @@ -60,169 +68,217 @@ Estas opciones se encuentran en :material-menu: → **Ajustes** → **Privacidad ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** está incluido en macOS y puede ampliarse para que sea compatible con OpenPGP con [GPG Suite](encryption.md#gpg-suite), que añade la posibilidad de enviar correo electrónico cifrado con PGP. - - [:octicons-home-16: Página Principal](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Política de Privacidad" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentación} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** está incluido en macOS y puede ampliarse para que sea compatible con OpenPGP con [GPG Suite](encryption.md#gpg-suite), que añade la posibilidad de enviar correo electrónico cifrado con PGP. + +[:octicons-home-16: Página Principal](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Política de Privacidad" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentación} + + + +
Apple Mail tiene la capacidad de cargar contenido remoto en segundo plano o bloquearlo por completo y ocultar su dirección IP a los remitentes en [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) e [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** es un cliente de correo electrónico de pago diseñado para que el cifrado de extremo a extremo sea perfecto, con funciones de seguridad como el bloqueo biométrico de aplicaciones. - - [:octicons-home-16: Página Principal](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Política de Privacidad" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentación} - - ??? downloads "Descargas" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning "Advertencia" +**Canary Mail** es un cliente de correo electrónico de pago diseñado para que el cifrado de extremo a extremo sea perfecto, con funciones de seguridad como el bloqueo biométrico de aplicaciones. - Canary Mail acaba de lanzar un cliente para Windows y Android, aunque no creemos que sea tan estable como su homólogo para iOS y Mac. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Advertencia + +Canary Mail acaba de lanzar un cliente para Windows y Android, aunque no creemos que sea tan estable como su homólogo para iOS y Mac. + +
Canary Mail es de código cerrado. Lo recomendamos debido a las pocas opciones que hay para clientes de correo electrónico en iOS que soporten PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** es una aplicación de correo electrónico mínima, de código abierto, que utiliza estándares abiertos (IMAP, SMTP, OpenPGP) con un bajo consumo de datos y batería. - - [:octicons-home-16: Página Principal](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Politica de Privacidad" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentación} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Código Fuente" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribuir } - - ??? downloads "Descargas" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** es una aplicación de correo electrónico mínima, de código abierto, que utiliza estándares abiertos (IMAP, SMTP, OpenPGP) con un bajo consumo de datos y batería. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** es una aplicación de gestión de información personal que proporciona funciones integradas de correo, calendario y libreta de direcciones. Evolution cuenta con una amplia [documentation](https://help.gnome.org/users/evolution/stable/) para ayudarle a empezar. - - [:octicons-home-16: Página Principal](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Política de Privacidad" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentación} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Código Fuente" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribuir } - - ??? downloads "Descargas" - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** es una aplicación de gestión de información personal que proporciona funciones integradas de correo, calendario y libreta de direcciones. Evolution cuenta con una amplia [documentation](https://help.gnome.org/users/evolution/stable/) para ayudarle a empezar. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** es una aplicación de correo independiente que soporta buzones POP3 e IMAP, pero sólo soporta push mail para IMAP. - - En el futuro, K-9 Mail será el cliente [de marca oficial](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird para Android. - - [:octicons-home-16: Página Principal](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Política de Privacidad" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentación} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Código Fuente" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribuir } - - ??? downloads "Descargas" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning "Advertencia" +**K-9 Mail** es una aplicación de correo independiente que soporta buzones POP3 e IMAP, pero sólo soporta push mail para IMAP. - Al responder a alguien de una lista de correo, la opción "responder" también puede incluir la lista de correo. Para obtener más información, consulte (https://github.com/thundernest/k-9/issues/3738). +En el futuro, K-9 Mail será el cliente [de marca oficial](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird para Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Advertencia

+ +Al responder a alguien de una lista de correo, la opción "responder" también puede incluir la lista de correo. Para obtener más información, consulte (https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** es una aplicación de gestión de información personal (PIM) del proyecto [KDE](https://kde.org). Ofrece un cliente de correo, una libreta de direcciones, un organizador y un cliente RSS. - - [:octicons-home-16: Página Principal](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Política de Privacidad" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentación} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Código Fuente" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribuir } - - ??? downloads "Descargas" - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** es una aplicación de gestión de información personal (PIM) del proyecto [KDE](https://kde.org). Ofrece un cliente de correo, una libreta de direcciones, un organizador y un cliente RSS. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Navegador) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** es una extensión de navegador que permite el intercambio de correos electrónicos cifrados siguiendo el estándar de cifrado OpenPGP. - - [:octicons-home-16: Página Principal](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Política de Privacidad" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentación} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Código Fuente" } - - ??? downloads "Descargas" - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** es una extensión de navegador que permite el intercambio de correos electrónicos cifrados siguiendo el estándar de cifrado OpenPGP. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** es un lector de correo de línea de comandos de código abierto (o MUA) para Linux y BSD. Es una bifurcación de [Mutt](https://en.wikipedia.org/wiki/Mutt_ (email_client)) con funciones adicionales. - - NeoMutt es un cliente basado en texto que tiene una curva de aprendizaje pronunciada. Sin embargo, es muy personalizable. - - [:octicons-home-16: Página Principal](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentación} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Código Fuente" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribuir } - - ??? downloads "Descargas" - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** es un lector de correo de línea de comandos de código abierto (o MUA) para Linux y BSD. Es una bifurcación de [Mutt](https://en.wikipedia.org/wiki/Mutt_ (email_client)) con funciones adicionales. + +NeoMutt es un cliente basado en texto que tiene una curva de aprendizaje pronunciada. Sin embargo, es muy personalizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criterios **Por favor, tenga en cuenta que no estamos afiliados con ninguno de los proyectos que recomendamos.** Además de [nuestros criterios estándar](about/criteria.md), hemos desarrollado un conjunto claro de requisitos que nos permiten ofrecer recomendaciones objetivas. Sugerimos que usted se familiarice con esta lista, antes de decidir utilizar un proyecto y realizar su propia investigación para asegurarse de que es la elección ideal para usted. -!!! example "Esta sección es nueva" +
+

Esta sección es nueva

- Estamos trabajando en establecer criterios definidos para cada sección de nuestra página, y esto puede estar sujeto a cambios. Si tiene alguna duda sobre nuestros criterios, por favor [pregunte en nuestro foro](https://discuss.privacyguides.net/latest) y no asuma que no hemos tenido en cuenta algo a la hora de hacer nuestras recomendaciones si no aparece aquí. Son muchos los factores que se tienen en cuenta y se debaten cuando recomendamos un proyecto, y documentar cada uno de ellos es un trabajo en curso. +Estamos trabajando en establecer criterios definidos para cada sección de nuestra página, y esto puede estar sujeto a cambios. Si tiene alguna duda sobre nuestros criterios, por favor [pregunte en nuestro foro](https://discuss.privacyguides.net/latest) y no asuma que no hemos tenido en cuenta algo a la hora de hacer nuestras recomendaciones si no aparece aquí. Son muchos los factores que se tienen en cuenta y se debaten cuando recomendamos un proyecto, y documentar cada uno de ellos es un trabajo en curso. + +
### Requisitos Mínimos diff --git a/i18n/es/financial-services.md b/i18n/es/financial-services.md index b2e507f9..1a6615e8 100644 --- a/i18n/es/financial-services.md +++ b/i18n/es/financial-services.md @@ -12,37 +12,48 @@ Realizar pagos en línea es uno de los principales desafíos para la privacidad. Hay una serie de servicios que ofrecen "tarjetas de débito virtuales" que puede utilizar con comercios en línea sin revelar sus datos bancarios o de facturación reales en la mayoría de los casos. Es importante tener en cuenta que estos servicios financieros **no** son anónimos y están sujetos a las leyes de "Conozca a su cliente" (KYC) y pueden requerir su DNI u otra información identificativa. Estos servicios son útiles principalmente para protegerle de las filtraciones de datos de los comercios, del seguimiento menos sofisticado o de la correlación de compras por parte de las agencias de marketing y del robo de datos en línea; y **no** para realizar una compra de forma totalmente anónima. -!!! tip "Compruebe su banco actual" +
+

Check your current bank

- Muchos bancos y proveedores de tarjetas de crédito ofrecen funciones nativas de tarjeta virtual. Si ya utiliza uno que ofrezca esta opción, debería utilizarlo en lugar de las siguientes recomendaciones en la mayoría de los casos. De este modo, no estará confiando su información personal a varias personas. +Muchos bancos y proveedores de tarjetas de crédito ofrecen funciones nativas de tarjeta virtual. Si ya utiliza uno que ofrezca esta opción, debería utilizarlo en lugar de las siguientes recomendaciones en la mayoría de los casos. De este modo, no estará confiando su información personal a varias personas. + +
### Privacy.com (EE. UU.) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - El plan gratuito de **Privacy.com** le permite crear hasta 12 tarjetas virtuales al mes, establecer límites de gasto en esas tarjetas y cerrarlas al instante. Su plan de pago le permite crear hasta 36 tarjetas al mes, obtener un 1% de reembolso en las compras y ocultar la información de la transacción de su banco. - - [:octicons-home-16: Página Principal](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Política de Privacidad" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentación} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +El plan gratuito de **Privacy.com** le permite crear hasta 12 tarjetas virtuales al mes, establecer límites de gasto en esas tarjetas y cerrarlas al instante. Su plan de pago le permite crear hasta 36 tarjetas al mes, obtener un 1% de reembolso en las compras y ocultar la información de la transacción de su banco. + +[:octicons-home-16: Página Principal](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Política de Privacidad" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentación} + + + +
Privacy.com facilita por defecto a su banco información sobre los comercios en los que compra. Su función de pago "discreet merchants" oculta la información de los comercios a su banco, de modo que su banco sólo ve que se ha realizado una compra en Privacy.com, pero no dónde se ha gastado el dinero. Sin embargo, esto no es infalible y, por supuesto, Privacy.com sigue teniendo conocimiento de los comercios en los que gasta dinero. ### MySudo (EE. UU., De Pago) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** proporciona hasta 9 tarjetas virtuales dependiendo del plan que contrate. Sus planes de pago incluyen además funciones que pueden ser útiles para realizar compras en privado, como números de teléfono virtuales y direcciones de correo electrónico, aunque normalmente recomendamos otros [proveedores de alias de correo electrónico](email.md) para un uso extenso del alias de correo electrónico. - - [:octicons-home-16: Página Principal](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Política de Privacidad" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentación} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** proporciona hasta 9 tarjetas virtuales dependiendo del plan que contrate. Sus planes de pago incluyen además funciones que pueden ser útiles para realizar compras en privado, como números de teléfono virtuales y direcciones de correo electrónico, aunque normalmente recomendamos otros [proveedores de alias de correo electrónico](email.md) para un uso extenso del alias de correo electrónico. + +[:octicons-home-16: Página Principal](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Política de Privacidad" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentación} + + + +
Por el momento, las tarjetas virtuales de MySudo solo están disponibles a través de la aplicación para iOS. @@ -50,9 +61,12 @@ Por el momento, las tarjetas virtuales de MySudo solo están disponibles a trav **Por favor, tenga en cuenta que no estamos afiliados con ninguno de los proyectos que recomendamos.** Además de [nuestros criterios estándar](about/criteria.md), hemos desarrollado un conjunto claro de requisitos que nos permiten ofrecer recomendaciones objetivas. Sugerimos que usted se familiarice con esta lista, antes de elegir utilizar un proyecto y realizar su propia investigación para asegurarse que es la elección ideal para usted. -!!! example "Esta sección es nueva" +
+

Esta sección es nueva

- Estamos trabajando en establecer criterios definidos para cada sección de nuestra página, y esto puede estar sujeto a cambios. Si tienes alguna duda sobre nuestros criterios, por favor [pregunta en nuestro foro](https://discuss.privacyguides.net/latest) y no asumas que no hemos tenido en cuenta algo a la hora de hacer nuestras recomendaciones si no aparece aquí. Son muchos los factores que se tienen en cuenta y se debaten cuando recomendamos un proyecto, y documentar cada uno de ellos es un trabajo en curso. +Estamos trabajando en establecer criterios definidos para cada sección de nuestra página, y esto puede estar sujeto a cambios. Si tienes alguna duda sobre nuestros criterios, por favor [pregunta en nuestro foro](https://discuss.privacyguides.net/latest) y no asumas que no hemos tenido en cuenta algo a la hora de hacer nuestras recomendaciones si no aparece aquí. Son muchos los factores que se tienen en cuenta y se debaten cuando recomendamos un proyecto, y documentar cada uno de ellos es un trabajo en curso. + +
- Permite la creación de múltiples tarjetas que funcionan como un escudo entre el comercio y sus finanzas personales. - Las tarjetas no deben exigirle que facilite al comercio información precisa sobre la dirección de facturación. @@ -63,23 +77,30 @@ Estos servicios le permiten comprar tarjetas de regalo para una gran variedad de ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (disponible en EE. UU. y Canad) le permite comprar tarjetas regalo para una gran variedad de comercios. - - [:octicons-home-16: Página Principal](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Política de Privacidad" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentación} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (disponible en EE. UU. y Canad) le permite comprar tarjetas regalo para una gran variedad de comercios. + +[:octicons-home-16: Página Principal](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Política de Privacidad" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentación} + + + +
### Criterios **Por favor, tenga en cuenta que no estamos afiliados con ninguno de los proyectos que recomendamos.** Además de [nuestros criterios estándar](about/criteria.md), hemos desarrollado un conjunto claro de requisitos que nos permiten ofrecer recomendaciones objetivas. Sugerimos que usted se familiarice con esta lista, antes de elegir utilizar un proyecto y realizar su propia investigación para asegurarse que es la elección ideal para usted. -!!! example "Esta sección es nueva" +
+

Esta sección es nueva

- Estamos trabajando en establecer criterios definidos para cada sección de nuestra página, y esto puede estar sujeto a cambios. Si tienes alguna duda sobre nuestros criterios, por favor [pregunta en nuestro foro](https://discuss.privacyguides.net/latest) y no asumas que no hemos tenido en cuenta algo a la hora de hacer nuestras recomendaciones si no aparece aquí. Son muchos los factores que se tienen en cuenta y se debaten cuando recomendamos un proyecto, y documentar cada uno de ellos es un trabajo en curso. +Estamos trabajando en establecer criterios definidos para cada sección de nuestra página, y esto puede estar sujeto a cambios. Si tienes alguna duda sobre nuestros criterios, por favor [pregunta en nuestro foro](https://discuss.privacyguides.net/latest) y no asumas que no hemos tenido en cuenta algo a la hora de hacer nuestras recomendaciones si no aparece aquí. Son muchos los factores que se tienen en cuenta y se debaten cuando recomendamos un proyecto, y documentar cada uno de ellos es un trabajo en curso. + +
- Acepta pagos en [una criptomoneda recomendada](cryptocurrency.md). - No exige identificación. diff --git a/i18n/es/router.md b/i18n/es/router.md index 98fcabc9..05d51f1f 100644 --- a/i18n/es/router.md +++ b/i18n/es/router.md @@ -1,7 +1,7 @@ --- title: "Firmware del Router" icon: material/router-wireless -description: Estos sistemas operativos alternativos pueden utilizarse para proteger tu router o punto de acceso Wi-Fi. +description: These alternative operating systems can be used to secure your router or Wi-Fi access point. cover: router.webp --- @@ -9,32 +9,40 @@ A continuación se presentan algunos sistemas operativos alternativos, que puede ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** es un sistema operativo basado en Linux; se utiliza principalmente en dispositivos integrados para enrutar el tráfico de red. Incluye util-linux, uClibc, y BusyBox. Todos los componentes han sido optimizados para routers domésticos. - - [:octicons-home-16: Página Principal](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentación} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Código Fuente } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribuir } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** es un sistema operativo basado en Linux; se utiliza principalmente en dispositivos integrados para enrutar el tráfico de red. Incluye util-linux, uClibc, y BusyBox. Todos los componentes han sido optimizados para routers domésticos. + +[:octicons-home-16: Página Principal](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentación} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Código Fuente } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribuir } + + + +
Puedes consultar [ la tabla de hardware](https://openwrt.org/toh/start) de OpenWrt para comprobar si tu dispositivo es compatible. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** es una plataforma de enrutamiento y cortafuegos de código abierto basada en FreeBSD que incorpora muchas características avanzadas, como la conformación del tráfico, el equilibrio de carga y las capacidades de VPN, con muchas más características disponibles en forma de plugins. OPNsense se implementa habitualmente como cortafuegos perimetral, router, punto de acceso inalámbrico, servidor DHCP, servidor DNS y punto final VPN. - - [:octicons-home-16: Página Principal](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentación} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Código Fuente" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribuir } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** es una plataforma de enrutamiento y cortafuegos de código abierto basada en FreeBSD que incorpora muchas características avanzadas, como la conformación del tráfico, el equilibrio de carga y las capacidades de VPN, con muchas más características disponibles en forma de plugins. OPNsense se implementa habitualmente como cortafuegos perimetral, router, punto de acceso inalámbrico, servidor DHCP, servidor DNS y punto final VPN. + +[:octicons-home-16: Página Principal](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentación} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Código Fuente" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribuir } + + + +
OPNsense se desarrolló originalmente como una bifurcación de [pfSense](https://en.wikipedia.org/wiki/PfSense), y ambos proyectos destacan por ser distribuciones de cortafuegos libres y fiables que ofrecen características que a menudo sólo se encuentran en los costosos cortafuegos comerciales. Lanzado en 2015, los desarrolladores de OPNsense [citaron a](https://docs.opnsense.org/history/thefork.html) una serie de problemas de seguridad y de calidad del código de pfSense que consideraban que necesitaba una bifurcación del proyecto, así como preocupaciones por la adquisición mayoritaria de pfSense por parte de Netgate y la futura dirección del proyecto pfSense. @@ -42,9 +50,12 @@ OPNsense se desarrolló originalmente como una bifurcación de [pfSense](https:/ **Por favor, ten en cuenta que no estamos afiliados con ninguno de los proyectos que recomendamos.** Además de [nuestros criterios estándar](about/criteria.md), hemos desarrollado un conjunto claro de requisitos que nos permiten proporcionar recomendaciones objetivas. Te sugerimos que te familiarices con esta lista antes de elegir usar un proyecto, y que lleves a cabo tu propia investigación para asegurarte de que es la elección correcta para ti. -!!! example "Esta sección es nueva" +
+

Esta sección es nueva

- Estamos trabajando en establecer criterios definidos para cada sección de nuestra página, y esto puede estar sujero a cambios. Si tienes alguna duda sobre nuestros criterios, por favor [pregunta en nuestro foro](https://discuss.privacyguides.net/latest) y no asumas que no hemos tenido en cuenta algo a la hora de hacer nuestras recomendaciones si no aparece aquí. Son muchos los factores que se tienen en cuenta y se debaten cuando recomendamos un proyecto, y documentar cada uno de ellos es un trabajo en curso. +Estamos trabajando en establecer criterios definidos para cada sección de nuestra página, y esto puede estar sujero a cambios. Si tienes alguna duda sobre nuestros criterios, por favor [pregunta en nuestro foro](https://discuss.privacyguides.net/latest) y no asumas que no hemos tenido en cuenta algo a la hora de hacer nuestras recomendaciones si no aparece aquí. Son muchos los factores que se tienen en cuenta y se debaten cuando recomendamos un proyecto, y documentar cada uno de ellos es un trabajo en curso. + +
- Debe ser de código abierto. - Debe recibir actualizaciones de manera periódica. diff --git a/i18n/fa/android.md b/i18n/fa/android.md index b2c2d3d0..6a650455 100644 --- a/i18n/fa/android.md +++ b/i18n/fa/android.md @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. +End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** is the best choice when it comes to privacy and security. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** is the best choice when it comes to privacy and security. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Operating Systems diff --git a/i18n/fa/calendar.md b/i18n/fa/calendar.md index 07671ab9..fd26697b 100644 --- a/i18n/fa/calendar.md +++ b/i18n/fa/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/fa/cloud.md b/i18n/fa/cloud.md index 4bf7fa2f..34b98b3d 100644 --- a/i18n/fa/cloud.md +++ b/i18n/fa/cloud.md @@ -10,29 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? توصیه شده +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Requirements diff --git a/i18n/fa/email-clients.md b/i18n/fa/email-clients.md index fa30cfc6..6e596674 100644 --- a/i18n/fa/email-clients.md +++ b/i18n/fa/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### فایرفاکس Firefox @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/fa/financial-services.md b/i18n/fa/financial-services.md index 6cedefcb..60641cd0 100644 --- a/i18n/fa/financial-services.md +++ b/i18n/fa/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/fa/router.md b/i18n/fa/router.md index 8b814e6e..870cd79e 100644 --- a/i18n/fa/router.md +++ b/i18n/fa/router.md @@ -9,32 +9,40 @@ Below are a few alternative operating systems, that can be used on routers, Wi-F ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } + + + +
You can consult OpenWrt's [table of hardware](https://openwrt.org/toh/start) to check if your device is supported. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } + + + +
OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.org/wiki/PfSense), and both projects are noted for being free and reliable firewall distributions which offer features often only found in expensive commercial firewalls. Launched in 2015, the developers of OPNsense [cited](https://docs.opnsense.org/history/thefork.html) a number of security and code-quality issues with pfSense which they felt necessitated a fork of the project, as well as concerns about Netgate's majority acquisition of pfSense and the future direction of the pfSense project. @@ -42,9 +50,12 @@ OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.or **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Must be open source. - Must receive regular updates. diff --git a/i18n/fr/android.md b/i18n/fr/android.md index c582a5cd..ac6509d3 100644 --- a/i18n/fr/android.md +++ b/i18n/fr/android.md @@ -1,14 +1,14 @@ --- -meta_title: "Recommandations Android : GrapheneOS et DivestOS - Privacy Guides" +meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" title: "Android" icon: 'simple/android' -description: Vous pouvez remplacer le système d'exploitation de votre téléphone Android par ces alternatives sécurisées et respectueuses de la vie privée. +description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: - "@context": http://schema.org "@type": WebPage - name: Systèmes d'exploitation Android privés + name: Private Android Operating Systems url: "./" - "@context": http://schema.org @@ -16,7 +16,7 @@ schema: name: Android image: /assets/img/android/android.svg url: https://source.android.com/ - sameAs: https://fr.wikipedia.org/wiki/Android + sameAs: https://en.wikipedia.org/wiki/Android_(operating_system) - "@context": http://schema.org "@type": CreativeWork @@ -47,7 +47,7 @@ schema: "@type": Brand name: Google image: /assets/img/android/google-pixel.png - sameAs: https://fr.wikipedia.org/wiki/Google_Pixel + sameAs: https://en.wikipedia.org/wiki/Google_Pixel review: "@type": Review author: @@ -95,26 +95,31 @@ Voici les systèmes d'exploitation, les appareils et les applications Android qu Nous vous recommandons d'installer l'un de ces systèmes d'exploitation Android personnalisés sur votre appareil, classés par ordre de préférence, en fonction de la compatibilité de votre appareil avec ces systèmes d'exploitation. -!!! note "À noter" +
+

Note

- Les appareils en fin de vie (tels que les appareils à "support étendu" de GrapheneOS ou de CalyxOS) ne disposent pas de correctifs de sécurité complets (mises à jour de micrologiciel) en raison de l'arrêt du support par le constructeur. Ces appareils ne peuvent pas être considérés comme totalement sûrs, quel que soit le logiciel installé. +Les appareils en fin de vie (tels que les appareils à "support étendu" de GrapheneOS ou de CalyxOS) ne disposent pas de correctifs de sécurité complets (mises à jour de micrologiciel) en raison de l'arrêt du support par le constructeur. Ces appareils ne peuvent pas être considérés comme totalement sûrs, quel que soit le logiciel installé. + +
### GrapheneOS -!!! recommendation +
- ![Logo GrapheneOS](assets/img/android/grapheneos.svg#only-light){ align=right } - ![Logo GrapheneOS](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** est le meilleur choix en matière de confidentialité et de sécurité. - - GrapheneOS apporte des améliorations supplémentaires en matière de [renforcement de la sécurité](https://fr.wikipedia.org/wiki/Durcissement_%28informatique%29) et de confidentialité. Il dispose d'un [allocateur de mémoire renforcé](https://github.com/GrapheneOS/hardened_malloc), d'autorisations pour le réseau et les capteurs, et de diverses autres [fonctions de sécurité](https://grapheneos.org/features). GrapheneOS est également livré avec des mises à jour complètes du micrologiciel et des versions signées, de sorte que le démarrage vérifié est entièrement pris en charge. - - [:octicons-home-16: Page d'accueil ](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Code source" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribuer } +![Logo GrapheneOS](assets/img/android/grapheneos.svg#only-light){ align=right } +![Logo GrapheneOS](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** est le meilleur choix en matière de confidentialité et de sécurité. + +GrapheneOS apporte des améliorations supplémentaires en matière de [renforcement de la sécurité](https://fr.wikipedia.org/wiki/Durcissement_%28informatique%29) et de confidentialité. Il dispose d'un [allocateur de mémoire renforcé](https://github.com/GrapheneOS/hardened_malloc), d'autorisations pour le réseau et les capteurs, et de diverses autres [fonctions de sécurité](https://grapheneos.org/features). GrapheneOS est également livré avec des mises à jour complètes du micrologiciel et des versions signées, de sorte que le démarrage vérifié est entièrement pris en charge. + +[:octicons-home-16: Page d'accueil ](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Politique de confidentialité" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Code source" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribuer } + +
GrapheneOS prend en charge [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), qui exécute les [Services Google Play](https://fr.wikipedia.org/wiki/Services_Google_Play) entièrement sandboxed comme toute autre application normale. Cela signifie que vous pouvez profiter de la plupart des services Google Play, tels que [les notifications push](https://firebase.google.com/docs/cloud-messaging/), tout en vous donnant un contrôle total sur leurs autorisations et leur accès, et tout en les contenant à un [profil de travail](os/android-overview.md#work-profile) ou un [profil d'utilisateur](os/android-overview.md#user-profiles) spécifique de votre choix. @@ -124,19 +129,21 @@ Les téléphones Google Pixel sont les seuls appareils qui répondent actuelleme ### DivestOS -!!! recommendation +
- ![Logo DivestOS](assets/img/android/divestos.svg){ align=right } - - **DivestOS** est un léger dérivé de [LineageOS](https://lineageos.org/). - DivestOS hérite de nombreux [appareils pris en charge](https://divestos.org/index.php?page=devices&base=LineageOS) de LineageOS. Il a des versions signées, ce qui permet d'avoir un [démarrage vérifié](https://source.android.com/security/verifiedboot) sur certains appareils autres que des Pixel. - - [:octicons-home-16: Page d'accueil](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Service onion" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Code source" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribuer } +![Logo DivestOS](assets/img/android/divestos.svg){ align=right } + +**DivestOS** est un léger dérivé de [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. Il a des versions signées, ce qui permet d'avoir un [démarrage vérifié](https://source.android.com/security/verifiedboot) sur certains appareils autres que des Pixel. + +[:octicons-home-16: Page d'accueil](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Service onion" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Politique de confidentialité" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Code source" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribuer } + +
DivestOS a une [correction](https://gitlab.com/divested-mobile/cve_checker) automatique des vulnérabilités de noyau ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)), moins de blobs propriétaires, et un fichier [hosts](https://divested.dev/index.php?page=dnsbl) personnalisé. Sa WebView renforcée, [Mulch](https://gitlab.com/divested-mobile/mulch), permet [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) pour toutes les architectures et [un partitionnement de l'état du réseau](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), et reçoit des mises à jour hors bande. DivestOS inclut également les correctifs de noyau de GrapheneOS et active toutes les fonctions de sécurité de noyau disponibles via le [renforcement defconfig](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). Tous les noyaux plus récents que la version 3.4 incluent une [désinfection](https://lwn.net/Articles/334747/) complète de la page et tous les ~22 noyaux compilés par Clang ont [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) activé. @@ -144,11 +151,14 @@ DivestOS met en œuvre certains correctifs de renforcement du système développ DivestOS utilise F-Droid comme magasin d'applications par défaut. Nous [recommandons normalement d'éviter F-Droid](#f-droid), mais ce n'est pas possible sur DivestOS ; les développeurs mettent à jour leurs applications via leurs propres dépôts F-Droid ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) et [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). Nous recommandons de désactiver l'application officielle F-Droid et d'utiliser [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **avec les dépôts DivestOS activés** pour maintenir ces composants à jour. Pour les autres applications, nos méthodes recommandées pour les obtenir restent applicables. -!!! warning "Avertissement" +
+

Avertissement

- L'[état](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) des mises à jour du micrologiciel DivestOS et le contrôle de la qualité varient selon les appareils qu'il prend en charge. Nous recommandons toujours GrapheneOS en fonction de la compatibilité de votre appareil. Pour les autres appareils, DivestOS est une bonne alternative. - - Tous les appareils pris en charge ne disposent pas d'un démarrage vérifié, et certains le font mieux que d'autres. +L'[état](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) des mises à jour du micrologiciel DivestOS et le contrôle de la qualité varient selon les appareils qu'il prend en charge. Nous recommandons toujours GrapheneOS en fonction de la compatibilité de votre appareil. Pour les autres appareils, DivestOS est une bonne alternative. + +Tous les appareils pris en charge ne disposent pas d'un démarrage vérifié, et certains le font mieux que d'autres. + +
## Appareils Android @@ -156,7 +166,7 @@ Lorsque vous achetez un appareil, nous vous recommandons d'en prendre un aussi n Évitez d'acheter des téléphones auprès des opérateurs de réseaux mobiles. Ces derniers ont souvent un **chargeur d'amorçage verrouillé** et ne supportent pas le [déverrouillage constructeur](https://source.android.com/devices/bootloader/locking_unlocking). Ces variantes de téléphone vous empêcheront d'installer tout type de distribution Android alternative. -Soyez très **prudent** lorsque vous achetez des téléphones d'occasion sur des marchés en ligne. Vérifiez toujours la réputation du vendeur. Si l'appareil est volé, il est possible que l'[IMEI soit mis sur liste noire](https://www.gsma.com/security/resources/imei-blacklisting/). Il y a également un risque d'être associé à l'activité de l'ancien propriétaire. +Soyez très **prudent** lorsque vous achetez des téléphones d'occasion sur des marchés en ligne. Vérifiez toujours la réputation du vendeur. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). Il y a également un risque d'être associé à l'activité de l'ancien propriétaire. Quelques conseils supplémentaires concernant les appareils Android et la compatibilité des systèmes d'exploitation : @@ -168,15 +178,17 @@ Quelques conseils supplémentaires concernant les appareils Android et la compat Les téléphones Google Pixel sont les **seuls** appareils dont nous recommandons l'achat. Les téléphones Pixel ont une sécurité matérielle plus forte que tous les autres appareils Android actuellement sur le marché, grâce à une prise en charge AVB adéquate pour les systèmes d'exploitation tiers et aux puces de sécurité personnalisées [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) de Google faisant office d'Elément Sécurisé. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - Les appareils **Google Pixel** sont connus pour avoir une bonne sécurité et prendre correctement en charge le [Démarrage Vérifié](https://source.android.com/security/verifiedboot), même lors de l'installation de systèmes d'exploitation personnalisés. - - À partir des **Pixel 8** et **8 Pro**, les appareils Pixel bénéficient d'un minimum de 7 ans de mises à jour de sécurité garanties, ce qui leur assure une durée de vie bien plus longue que les 2 à 5 ans généralement proposés par les constructeurs concurrents. - - [:material-shopping: Boutique](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +Les appareils **Google Pixel** sont connus pour avoir une bonne sécurité et prendre correctement en charge le [Démarrage Vérifié](https://source.android.com/security/verifiedboot), même lors de l'installation de systèmes d'exploitation personnalisés. + +À partir des **Pixel 8** et **8 Pro**, les appareils Pixel bénéficient d'un minimum de 7 ans de mises à jour de sécurité garanties, ce qui leur assure une durée de vie bien plus longue que les 2 à 5 ans généralement proposés par les constructeurs concurrents. + +[:material-shopping: Boutique](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Les Eléments Sécurisés comme le Titan M2 sont plus limités que le Trusted Execution Environment du processeur utilisé par la plupart des autres téléphones, car ils ne sont utilisés que pour le stockage des secrets, l'attestation matérielle et la limitation du débit, et non pour exécuter des programmes "de confiance". Les téléphones dépourvus d'un Elément Sécurisé doivent utiliser le TEE pour *toutes* ces fonctions, ce qui élargit la surface d'attaque. @@ -198,43 +210,53 @@ Nous recommandons une grande variété d'applications Android sur ce site. Les a ### Shelter -!!! recommendation +
- ![Logo Shelter](assets/img/android/shelter.svg){ align=right } - - **Shelter** est une application qui vous aide à tirer parti de la fonctionnalité Profil professionnel d'Android pour isoler ou dupliquer des applications sur votre appareil. - - Shelter prend en charge le blocage de la recherche de contacts entre profils et le partage de fichiers entre profils via le gestionnaire de fichiers par défaut ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Dépôt](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Code source" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribuer } +![Logo Shelter](assets/img/android/shelter.svg){ align=right } -!!! warning "Avertissement" +**Shelter** est une application qui vous aide à tirer parti de la fonctionnalité Profil professionnel d'Android pour isoler ou dupliquer des applications sur votre appareil. - Shelter est recommandé par rapport à [Insular](https://secure-system.gitlab.io/Insular/) et [Island](https://github.com/oasisfeng/island) car il prend en charge le [blocage de la recherche de contact](https://secure-system.gitlab.io/Insular/faq.html). - - En utilisant Shelter, vous accordez une confiance totale à son développeur, car Shelter agit en tant qu'[administrateur de l'appareil](https://developer.android.com/guide/topics/admin/device-admin) pour créer le Profil professionnel, et il a un accès étendu aux données stockées dans ce dernier. +Shelter prend en charge le blocage de la recherche de contacts entre profils et le partage de fichiers entre profils via le gestionnaire de fichiers par défaut ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Dépôt](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Code source" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribuer } + +
+ +
+

Avertissement

+ +Shelter est recommandé par rapport à [Insular](https://secure-system.gitlab.io/Insular/) et [Island](https://github.com/oasisfeng/island) car il prend en charge le [blocage de la recherche de contact](https://secure-system.gitlab.io/Insular/faq.html). + +En utilisant Shelter, vous accordez une confiance totale à son développeur, car Shelter agit en tant qu'[administrateur de l'appareil](https://developer.android.com/guide/topics/admin/device-admin) pour créer le Profil professionnel, et il a un accès étendu aux données stockées dans ce dernier. + +
### Secure Camera -!!! recommendation +
- ![Logo de Secure Camera](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Logo de Secure Camera](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** est une application de caméra axée sur la confidentialité et la sécurité qui peut capturer des images, des vidéos et des QR codes. Les extensions du vendeur CameraX (Portrait, HDR, Night Sight, Face Retouch et Auto) sont également prises en charge sur les appareils disponibles. - - [:octicons-repo-16: Dépôt](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Code source" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribuer } - - ??? downloads "Téléchargements" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: Magasin d'application de GrapheneOS](https://github.com/GrapheneOS/Apps/releases) +![Logo de Secure Camera](assets/img/android/secure_camera.svg#only-light){ align=right } +![Logo de Secure Camera](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** est une application de caméra axée sur la confidentialité et la sécurité qui peut capturer des images, des vidéos et des QR codes. Les extensions du vendeur CameraX (Portrait, HDR, Night Sight, Face Retouch et Auto) sont également prises en charge sur les appareils disponibles. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Les principales caractéristiques de confidentialité comprennent : @@ -242,50 +264,63 @@ Les principales caractéristiques de confidentialité comprennent : - Utilisation de la nouvelle API [Media](https://developer.android.com/training/data-storage/shared/media), donc les [autorisations de stockage](https://developer.android.com/training/data-storage) ne sont pas nécessaires - L'autorisation microphone n'est pas nécessaire, sauf si vous souhaitez enregistrer des sons -!!! note "À noter" +
+

Note

- Les métadonnées ne sont pour le moment pas supprimées des fichiers vidéo, mais cela est prévu. - - Les métadonnées d'orientation de l'image ne sont pas supprimées. Si vous activez la fonction de localisation (dans Secure Camera), elle ne **sera pas** non plus supprimée. Si vous voulez la supprimer ultérieurement, vous devrez utiliser une application externe telle que [ExifEraser](data-redaction.md#exiferaser). +Les métadonnées ne sont pour le moment pas supprimées des fichiers vidéo, mais cela est prévu. + +Les métadonnées d'orientation de l'image ne sont pas supprimées. Si vous activez la fonction de localisation (dans Secure Camera), elle ne **sera pas** non plus supprimée. Si vous voulez la supprimer ultérieurement, vous devrez utiliser une application externe telle que [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Logo de Secure PDF Viewer](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Logo de Secure PDF Viewer](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** est un visualiseur de PDF basé sur [pdf.js](https://en.wikipedia.org/wiki/PDF.js) qui ne nécessite aucune autorisation. Le PDF est introduit dans une [webview](https://developer.android.com/guide/webapps/webview) [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)). Cela signifie qu'il n'a pas besoin d'autorisation directe pour accéder au contenu ou aux fichiers. - - [Content-Security-Policy](https://fr.wikipedia.org/wiki/Content_Security_Policy) est utilisé pour faire en sorte que les propriétés JavaScript et de style dans la WebView soient entièrement statiques. - - [:octicons-repo-16: Dépôt](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Code source" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribuer } - - ??? downloads "Téléchargements" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: Magasin d'application de GrapheneOS](https://github.com/GrapheneOS/Apps/releases) +![Logo de Secure PDF Viewer](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Logo de Secure PDF Viewer](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** est un visualiseur de PDF basé sur [pdf.js](https://en.wikipedia.org/wiki/PDF.js) qui ne nécessite aucune autorisation. Le PDF est introduit dans une [webview](https://developer.android.com/guide/webapps/webview) [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)). Cela signifie qu'il n'a pas besoin d'autorisation directe pour accéder au contenu ou aux fichiers. + +[Content-Security-Policy](https://fr.wikipedia.org/wiki/Content_Security_Policy) est utilisé pour faire en sorte que les propriétés JavaScript et de style dans la WebView soient entièrement statiques. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtenir des applications ### Obtainium -!!! recommendation +
- ![logo Obtainium](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** est un gestionnaire d'applications qui vous permet d'installer et de mettre à jour des applications directement à partir de la page de publication du développeur (i.e. GitHub, GitLab, le site web du développeur, etc.), plutôt qu'un magasin d'applications/dépôt centralisé. Il prend en charge les mises à jour automatiques en arrière-plan sur Android 12 et les versions ultérieures. - - [:octicons-repo-16: Dépôt](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Code source" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribuer } - - ??? downloads "Téléchargements" - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![logo Obtainium](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** est un gestionnaire d'applications qui vous permet d'installer et de mettre à jour des applications directement à partir de la page de publication du développeur (i.e. GitHub, GitLab, le site web du développeur, etc.), plutôt qu'un magasin d'applications/dépôt centralisé. Il prend en charge les mises à jour automatiques en arrière-plan sur Android 12 et les versions ultérieures. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium vous permet de télécharger des fichiers d'installation APK à partir d'une grande variété de sources, et c'est à vous de vous assurer que ces sources et ces applications sont légitimes. Par exemple, l'utilisation d'Obtainium pour installer Signal à partir de [la page de téléchargement APK de Signal](https://signal.org/android/apk/) devrait être correcte, mais l'installation à partir de dépôts APK tiers comme Aptoide ou APKPure peut présenter des risques supplémentaires. Le risque d'installer une *mise à jour* malveillante est plus faible, car Android vérifie lui-même que toutes les mises à jour d'applications sont signées par le même développeur que l'application existante sur votre téléphone avant de les installer. @@ -297,19 +332,24 @@ Le magasin d'applications de GrapheneOS est disponible sur [GitHub](https://gith Le Google Play Store nécessite un compte Google pour se connecter, ce qui n'est pas idéal pour la confidentialité. Vous pouvez contourner ce problème en utilisant un client alternatif, tel que Aurora Store. -!!! recommendation +
- ![Logo Aurora Store](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** est un client Google Play Store qui ne nécessite pas de compte Google, de services Google Play ou microG pour télécharger des applications. - - [:octicons-home-16: Page d'accueil](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Politique de confidentialité" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Code source" } - - ??? downloads "Téléchargements" - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Logo Aurora Store](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** est un client Google Play Store qui ne nécessite pas de compte Google, de services Google Play ou microG pour télécharger des applications. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store ne vous permet pas de télécharger des applications payantes grâce à sa fonction de compte anonyme. Vous pouvez éventuellement vous connecter avec votre compte Google sur Aurora Store pour télécharger les applications que vous avez achetées, ce qui donne accès à la liste des applications que vous avez installées à Google, mais vous bénéficiez toujours de l'avantage de ne pas avoir besoin du client Google Play complet et des services Google Play ou microG sur votre appareil. @@ -374,17 +414,23 @@ D'autres dépôts tiers populaires pour F-Droid, tels que [IzzyOnDroid](https:// Cela dit, les dépôts [F-Droid](https://f-droid.org/en/packages/) et [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) abritent d'innombrables applications. Ils peuvent donc être un outil utile pour rechercher et découvrir des applications open-source que vous pouvez ensuite télécharger par d'autres moyens tels que le Play Store, Aurora Store ou en obtenant l'APK directement auprès du développeur. Vous devez faire preuve de discernement lorsque vous recherchez de nouvelles applications par cette méthode, et surveiller la fréquence des mises à jour de l'application. Des applications obsolètes peuvent s'appuyer sur des bibliothèques non maintenues, entre autres, ce qui constitue un risque potentiel pour la sécurité. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- Dans certains cas rares, le développeur d'une application ne la distribue que par le biais de F-Droid ([Gadgetbridge](https://gadgetbridge.org/) en est un exemple). Si vous avez vraiment besoin d'une telle application, nous vous recommandons d'utiliser le nouveau client [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) au lieu de l'application F-Droid originale pour l'obtenir. F-Droid Basic peut effectuer des mises à jour en arrière-plan, sans extension privilégiée ou root, et possède un ensemble de fonctionnalités réduit (limitant la surface d'attaque). +Dans certains cas rares, le développeur d'une application ne la distribue que par le biais de F-Droid ([Gadgetbridge](https://gadgetbridge.org/) en est un exemple). Si vous avez vraiment besoin d'une telle application, nous vous recommandons d'utiliser le nouveau client [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) au lieu de l'application F-Droid originale pour l'obtenir. F-Droid Basic peut effectuer des mises à jour en arrière-plan, sans extension privilégiée ou root, et possède un ensemble de fonctionnalités réduit (limitant la surface d'attaque). + +
## Critères **Veuillez noter que nous ne sommes affiliés à aucun des projets que nous recommandons.** En plus de [nos critères de base](about/criteria.md), nous avons développé un ensemble d'exigences claires pour nous permettre de fournir des recommandations objectives. Nous vous suggérons de vous familiariser avec cette liste avant de choisir d'utiliser un projet, et de mener vos propres recherches pour vous assurer que c'est le bon choix pour vous. -!!! example "Cette section est récente" +
+

Cette section est nouvelle

- Nous travaillons à l'établissement de critères définis pour chaque section de notre site, et celles-ci peuvent être sujet à changement. Si vous avez des questions sur nos critères, veuillez [poser la question sur notre forum](https://discuss.privacyguides.net/latest) et ne supposez pas que nous n'avons pas pris en compte un élément dans nos recommandations s'il ne figure pas dans la liste. De nombreux facteurs sont pris en compte et discutés lorsque nous recommandons un projet, et la documentation de chacun d'entre eux est en cours. +Nous travaillons à l'établissement de critères définis pour chaque section de notre site, et celles-ci peuvent être sujet à changement. Si vous avez des questions sur nos critères, veuillez [poser la question sur notre forum](https://discuss.privacyguides.net/latest) et ne supposez pas que nous n'avons pas pris en compte un élément dans nos recommandations s'il ne figure pas dans la liste. De nombreux facteurs sont pris en compte et discutés lorsque nous recommandons un projet, et la documentation de chacun d'entre eux est en cours. + +
### Systèmes d'exploitation diff --git a/i18n/fr/calendar.md b/i18n/fr/calendar.md index 42a71451..17e91dc6 100644 --- a/i18n/fr/calendar.md +++ b/i18n/fr/calendar.md @@ -1,7 +1,7 @@ --- title: "Synchronisation de calendrier" icon: material/calendar -description: Les calendriers contiennent certaines de vos données les plus sensibles ; utilisez des produits qui implémentent le chiffrement au repos. +description: Calendars contain some of your most sensitive data; use products that implement encryption at rest. cover: calendar.webp --- @@ -9,48 +9,58 @@ Les calendriers contiennent certaines de vos données les plus sensibles ; utili ## Tuta -!!! recommendation +
- ![logo Tuta](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offre un calendrier gratuit et chiffré sur toutes les plateformes prises en charge. Les fonctionnalités incluent: E2EE automatique de toutes les données, fonctionnalités de partage, fonctionnalité d'import/export, authentification multifacteur, et [plus](https://tuta.com/calendar-app-comparison/). - - Les calendriers multiples et la fonctionnalité de partage étendue sont réservés aux abonnés payants. - - [:octicons-home-16: Page d'accueil](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Code source" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribuer } - - ??? downloads "Téléchagements" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![logo Tuta](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offre un calendrier gratuit et chiffré sur toutes les plateformes prises en charge. Les fonctionnalités incluent: E2EE automatique de toutes les données, fonctionnalités de partage, fonctionnalité d'import/export, authentification multifacteur, et [plus](https://tuta.com/calendar-app-comparison/). + +Les calendriers multiples et la fonctionnalité de partage étendue sont réservés aux abonnés payants. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** est un service de calendrier chiffré disponible pour les membres de Proton via des clients web ou mobiles. Les fonctionnalités incluent: E2EE automatique de toutes les données, des fonctions de partage, la fonctionnalité d'import/export, et [plus](https://proton.me/fr/support/proton-calendar-guide). Les abonnés au service gratuit n'ont accès qu'à 3 calendriers, tandis que les abonnés payants peuvent créer jusqu'à 25 calendriers. Les fonctionnalités de partage avancées sont également limitées aux abonnés payants. - - [:octicons-home-16: Page d'accueil](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Code source" } - - ??? downloads "Téléchargements" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** est un service de calendrier chiffré disponible pour les membres de Proton via des clients web ou mobiles. Les fonctionnalités incluent: E2EE automatique de toutes les données, des fonctions de partage, la fonctionnalité d'import/export, et [plus](https://proton.me/fr/support/proton-calendar-guide). Les abonnés au service gratuit n'ont accès qu'à 3 calendriers, tandis que les abonnés payants peuvent créer jusqu'à 25 calendriers. Les fonctionnalités de partage avancées sont également limitées aux abonnés payants. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Malheureusement, en janvier 2024 Proton n'a [toujours](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) pas publié le code source de son application mobile Calendar sur Android ou iOS. Le client web de Proton Calendar est open source. @@ -58,9 +68,12 @@ Malheureusement, en janvier 2024 Proton n'a [toujours](https://discuss.privacygu **Veuillez noter que nous ne sommes affiliés à aucun des projets que nous recommandons.** En plus de [nos critères de base](about/criteria.md), nous avons développé un ensemble d'exigences claires pour nous permettre de fournir des recommandations objectives. Nous vous suggérons de vous familiariser avec cette liste avant de choisir d'utiliser un projet, et de mener vos propres recherches pour vous assurer que c'est le bon choix pour vous. -!!! example "Cette section est récente" +
+

Cette section est nouvelle

- Nous travaillons à l'établissement de critères définis pour chaque section de notre site, et celles-ci peuvent être sujet à changement. Si vous avez des questions sur nos critères, veuillez [poser la question sur notre forum](https://discuss.privacyguides.net/latest) et ne supposez pas que nous n'avons pas pris en compte un élément dans nos recommandations s'il ne figure pas dans la liste. De nombreux facteurs sont pris en compte et discutés lorsque nous recommandons un projet, et la documentation de chacun d'entre eux est en cours. +Nous travaillons à l'établissement de critères définis pour chaque section de notre site, et celles-ci peuvent être sujet à changement. Si vous avez des questions sur nos critères, veuillez [poser la question sur notre forum](https://discuss.privacyguides.net/latest) et ne supposez pas que nous n'avons pas pris en compte un élément dans nos recommandations s'il ne figure pas dans la liste. De nombreux facteurs sont pris en compte et discutés lorsque nous recommandons un projet, et la documentation de chacun d'entre eux est en cours. + +
### Qualifications minimales diff --git a/i18n/fr/cloud.md b/i18n/fr/cloud.md index 26c88b5d..084e818e 100644 --- a/i18n/fr/cloud.md +++ b/i18n/fr/cloud.md @@ -10,29 +10,37 @@ De nombreux fournisseurs de stockage cloud nécessitent que vous leur fassiez en Si ces alternatives ne répondent pas à vos besoins, nous vous suggérons d'utiliser un logiciel de chiffrement tel que [Cryptomator](encryption.md#cryptomator-cloud) avec un autre fournisseur de cloud. L'utilisation de Cryptomator en conjonction avec **tout** fournisseur de cloud (y compris ceux-ci) peut être une bonne idée pour réduire le risque de failles de chiffrement dans les clients natifs d'un fournisseur. -??? question "Vous cherchez Nextcloud ?" +
+Looking for Nextcloud? - Nextcloud est [toujours un outil recommandé](productivity.md) pour l'auto-hébergement d'une suite de gestion de fichiers, mais nous ne recommandons pas de fournisseurs de stockage Nextcloud tiers pour le moment, car nous [ne recommandons pas](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) la fonctionnalité E2EE intégrée de Nextcloud pour les utilisateurs moyens. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Logo Proton Drive](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** est un fournisseur suisse de stockage cloud chiffré issu du populaire fournisseur d'email chiffré [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Page d'accueil](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Code source" } - - ??? downloads "Téléchargements" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Logo Proton Drive](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** est un fournisseur suisse de stockage cloud chiffré issu du populaire fournisseur d'email chiffré [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
L'application web Proton Drive a fait l'objet d'un audit indépendant par Securitum en [2021](https://proton.me/blog/security-audit-all-proton-apps), tous les détails n'ont pas été communiqués, mais la lettre d'attestation de Securitum indique ce qui suit : @@ -42,23 +50,28 @@ Les nouveaux clients mobiles de Proton Drive n'ont pas encore fait l'objet d'un ## Tresorit -!!! recommendation +
- ![Logo Tresorit](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** est un fournisseur suisse-hongrois de stockage cloud chiffré fondé en 2011. Tresorit appartient à la Poste suisse, le service postal national de la Suisse. - - [:octicons-home-16: Page d'accueil](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads "Téléchargements" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Logo Tresorit](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** est un fournisseur suisse-hongrois de stockage cloud chiffré fondé en 2011. Tresorit appartient à la Poste suisse, le service postal national de la Suisse. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit a fait l'objet d'un certain nombre d'audits de sécurité indépendants : @@ -76,9 +89,12 @@ Ils ont également reçu le Digital Trust Label, une certification de la [Swiss **Veuillez noter que nous ne sommes affiliés à aucun des projets que nous recommandons.** En plus de [nos critères de base](about/criteria.md), nous avons développé un ensemble d'exigences claires pour nous permettre de fournir des recommandations objectives. Nous vous suggérons de vous familiariser avec cette liste avant de choisir d'utiliser un projet, et de mener vos propres recherches pour vous assurer que c'est le bon choix pour vous. -!!! example "Cette section est récente" +
+

Cette section est nouvelle

- Nous travaillons à l'établissement de critères définis pour chaque section de notre site, et celles-ci peuvent être sujet à changement. Si vous avez des questions sur nos critères, veuillez [poser la question sur notre forum](https://discuss.privacyguides.net/latest) et ne supposez pas que nous n'avons pas pris en compte un élément dans nos recommandations s'il ne figure pas dans la liste. De nombreux facteurs sont pris en compte et discutés lorsque nous recommandons un projet, et la documentation de chacun d'entre eux est en cours. +Nous travaillons à l'établissement de critères définis pour chaque section de notre site, et celles-ci peuvent être sujet à changement. Si vous avez des questions sur nos critères, veuillez [poser la question sur notre forum](https://discuss.privacyguides.net/latest) et ne supposez pas que nous n'avons pas pris en compte un élément dans nos recommandations s'il ne figure pas dans la liste. De nombreux facteurs sont pris en compte et discutés lorsque nous recommandons un projet, et la documentation de chacun d'entre eux est en cours. + +
### Exigences minimales diff --git a/i18n/fr/email-clients.md b/i18n/fr/email-clients.md index 72f584ee..7e8de44f 100644 --- a/i18n/fr/email-clients.md +++ b/i18n/fr/email-clients.md @@ -1,41 +1,49 @@ --- -title: "Clients d'e-mail" +title: "Logiciels de messagerie électronique" icon: material/email-open -description: Ces clients d'e-mail respectent la vie privée et prennent en charge le chiffrement OpenPGP. +description: These email clients are privacy-respecting and support OpenPGP email encryption. cover: email-clients.webp --- Notre liste de recommandations contient des clients d'e-mail qui prennent en charge à la fois [OpenPGP](encryption.md#openpgp) et l'authentification forte telle que [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth vous permet d'utiliser l'[Authentification à Multi-Facteurs](multi-factor-authentication) et d'empêcher le vol de compte. -??? warning "L'e-mail ne fournit pas de secret de transmission" +
+Email does not provide forward secrecy - Lors de l'utilisation d'une technologie de chiffrement de bout en bout (E2EE) comme OpenPGP, l'e-mail contiendra toujours [certaines métadonnées](email.md#email-metadata-overview) qui ne sont pas chiffrées dans l'en-tête de l'e-mail. - - OpenPGP ne prend pas non plus en charge la [confidentialité persistante](https://fr.wikipedia.org/wiki/Confidentialit%C3%A9_persistante), ce qui signifie que si votre clé privée ou celle du destinataire est volée, tous les messages précédents chiffrés avec cette clé seront exposés: [Comment protéger mes clés privées ?](basics/email-security.md) Envisagez l'utilisation d'un support qui assure la confidentialité persistante: - - [Communication en temps réel](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Multi-plateformes ### Thunderbird -!!! recommendation +
- ![Logo Thunderbird](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** est un client d'e-mail, de groupes de discussion, de flux d'informations et de chat (XMPP, IRC, Twitter) gratuit, open-source et multiplateforme, développé par la communauté Thunderbird, et précédemment par la Fondation Mozilla. - - [:octicons-home-16: Page d'accueil](https://www.thunderbird.net/fr/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://support.mozilla.org/fr/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Code source" } - - ??? downloads "Téléchargements" - - - [:simple-windows11: Windows](https://www.thunderbird.net/fr/) - - [:simple-apple: macOS](https://www.thunderbird.net/fr/) - - [:simple-linux: Linux](https://www.thunderbird.net/fr/) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Logo Thunderbird](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** est un client d'e-mail, de groupes de discussion, de flux d'informations et de chat (XMPP, IRC, Twitter) gratuit, open-source et multiplateforme, développé par la communauté Thunderbird, et précédemment par la Fondation Mozilla. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Configuration recommandée @@ -60,169 +68,217 @@ Ces options se trouvent dans :material-menu: → **Paramètres** → **Confident ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** est inclus dans macOS et peut être étendu pour prendre en charge OpenPGP avec [GPG Suite](/encryption/# gpg-suite), ce qui ajoute la possibilité d'envoyer des e-mails chiffrés. - - [:octicons-home-16: Page d'accueil](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** est inclus dans macOS et peut être étendu pour prendre en charge OpenPGP avec [GPG Suite](/encryption/# gpg-suite), ce qui ajoute la possibilité d'envoyer des e-mails chiffrés. + +[:octicons-home-16: Page d'accueil](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Politique de confidentialité" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail a la possibilité de charger le contenu distant en arrière-plan ou de le bloquer entièrement et masquer votre adresse IP des expéditeurs sur [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) et [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Logo de Canary Mail](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** est un client d'e-mail payant conçu pour rendre le chiffrement de bout en bout transparent grâce à des fonctions de sécurité telles que le verrouillage biométrique des applications. - - [:octicons-home-16: Page d'accueil](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads "Téléchargements" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Logo de Canary Mail](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning "Avertissement" +**Canary Mail** est un client d'e-mail payant conçu pour rendre le chiffrement de bout en bout transparent grâce à des fonctions de sécurité telles que le verrouillage biométrique des applications. - Canary Mail n'a publié que récemment un client Windows et Android, mais nous ne pensons pas qu'ils soient aussi stables que leurs homologues iOS et Mac. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Avertissement + +Canary Mail n'a publié que récemment un client Windows et Android, mais nous ne pensons pas qu'ils soient aussi stables que leurs homologues iOS et Mac. + +
Canary Mail est à source fermée. Nous le recommandons en raison du peu de choix disponibles pour les clients d'e-mail sur iOS prenant en charge PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![Logo FairEmail](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** est une application d'e-mail minimale et open-source, utilisant des standards ouverts (IMAP, SMTP, OpenPGP) avec une faible consommation de données et de batterie. - - [:octicons-home-16: Page d'accueil](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Code source" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribuer} - - ??? downloads "Téléchargements" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![Logo FairEmail](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** est une application d'e-mail minimale et open-source, utilisant des standards ouverts (IMAP, SMTP, OpenPGP) avec une faible consommation de données et de batterie. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Logo Evolution](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** est une application de gestion des informations personnelles qui fournit des fonctionnalités intégrées d'e-mail, de calendrier et de carnet d'adresses. Evolution dispose d'une vaste [documentation](https://help.gnome.org/users/evolution/stable/) pour vous aider à démarrer. - - [:octicons-home-16: Page d'accueil](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Code source" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribuer} - - ??? downloads "Téléchargements" - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Logo Evolution](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** est une application de gestion des informations personnelles qui fournit des fonctionnalités intégrées d'e-mail, de calendrier et de carnet d'adresses. Evolution dispose d'une vaste [documentation](https://help.gnome.org/users/evolution/stable/) pour vous aider à démarrer. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![Logo de K-9 Mail](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** est une application d'e-mail indépendante qui prend en charge les boîtes mail POP3 et IMAP, mais ne prend en charge le push mail que pour IMAP. - - À l'avenir, K-9 Mail sera le client Thunderbird [officiel](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) pour Android . - - [:octicons-home-16: Page d'accueil](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Code source" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribuer } - - ??? downloads "Téléchargements" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![Logo de K-9 Mail](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning "Avertissement" +**K-9 Mail** est une application d'e-mail indépendante qui prend en charge les boîtes mail POP3 et IMAP, mais ne prend en charge le push mail que pour IMAP. - Lorsque vous répondez à un membre d'une liste de diffusion, l'option "répondre" peut également inclure la liste de diffusion. Pour plus d'informations, voir [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +À l'avenir, K-9 Mail sera le client Thunderbird [officiel](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) pour Android . + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Avertissement

+ +Lorsque vous répondez à un membre d'une liste de diffusion, l'option "répondre" peut également inclure la liste de diffusion. Pour plus d'informations, voir [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Logo Kontact](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** est une application de gestion des informations personnelles (PIM) issue du projet [KDE](https://kde.org). Il offre un client d'e-mail, un carnet d'adresses, un organiseur et un client RSS. - - [:octicons-home-16: Page d'accueil](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Code source" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribuer } - - ??? downloads "Téléchargements" - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Logo Kontact](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** est une application de gestion des informations personnelles (PIM) issue du projet [KDE](https://kde.org). Il offre un client d'e-mail, un carnet d'adresses, un organiseur et un client RSS. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Navigateur) -!!! recommendation +
- ![Logo Mailvelope](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** est une extension de navigateur qui permet l'échange d'e-mails chiffrés selon la norme de chiffrement OpenPGP. - - [:octicons-home-16: Page d'accueil](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Code source" } - - ??? downloads "Téléchargements" - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Logo Mailvelope](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** est une extension de navigateur qui permet l'échange d'e-mails chiffrés selon la norme de chiffrement OpenPGP. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![Logo NeoMutt](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** est un lecteur d'e-mails en ligne de commande (ou MUA) open-source pour Linux et BSD. C'est un fork de [Mutt](https://fr.wikipedia.org/wiki/Mutt) avec des fonctionnalités supplémentaires. - - NeoMutt est un client textuel qui a une courbe d'apprentissage abrupte. Il est cependant très personnalisable. - - [:octicons-home-16: Page d'accueil](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Code source" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribuer } - - ??? downloads "Téléchargements" - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![Logo NeoMutt](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** est un lecteur d'e-mails en ligne de commande (ou MUA) open-source pour Linux et BSD. C'est un fork de [Mutt](https://fr.wikipedia.org/wiki/Mutt) avec des fonctionnalités supplémentaires. + +NeoMutt est un client textuel qui a une courbe d'apprentissage abrupte. Il est cependant très personnalisable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Critères **Veuillez noter que nous ne sommes affiliés à aucun des projets que nous recommandons.** En plus de [nos critères de base](about/criteria.md), nous avons développé un ensemble d'exigences claires pour nous permettre de fournir des recommandations objectives. Nous vous suggérons de vous familiariser avec cette liste avant de choisir d'utiliser un projet, et de mener vos propres recherches pour vous assurer que c'est le bon choix pour vous. -!!! example "Cette section est récente" +
+

Cette section est nouvelle

- Nous travaillons à l'établissement de critères définis pour chaque section de notre site, et celles-ci peuvent être sujet à changement. Si vous avez des questions sur nos critères, veuillez [poser la question sur notre forum](https://discuss.privacyguides.net/latest) et ne supposez pas que nous n'avons pas pris en compte un élément dans nos recommandations s'il ne figure pas dans la liste. De nombreux facteurs sont pris en compte et discutés lorsque nous recommandons un projet, et la documentation de chacun d'entre eux est en cours. +Nous travaillons à l'établissement de critères définis pour chaque section de notre site, et celles-ci peuvent être sujet à changement. Si vous avez des questions sur nos critères, veuillez [poser la question sur notre forum](https://discuss.privacyguides.net/latest) et ne supposez pas que nous n'avons pas pris en compte un élément dans nos recommandations s'il ne figure pas dans la liste. De nombreux facteurs sont pris en compte et discutés lorsque nous recommandons un projet, et la documentation de chacun d'entre eux est en cours. + +
### Qualifications minimales diff --git a/i18n/fr/financial-services.md b/i18n/fr/financial-services.md index 27c777c7..fc31f878 100644 --- a/i18n/fr/financial-services.md +++ b/i18n/fr/financial-services.md @@ -12,37 +12,48 @@ Effectuer des paiements en ligne est l'un des plus grands défis en matière de Il existe un certain nombre de services qui fournissent des "cartes de débit virtuelles" que vous pouvez utiliser avec les commerçants en ligne sans révéler vos informations bancaires ou de facturation réelles dans la plupart des cas. Il est important de noter que ces services financiers ne sont **pas** anonymes et qu'ils sont soumis aux lois relatives à la connaissance du client (KYC) et peuvent nécessiter une pièce d'identité ou d'autres informations d'identification. Ces services sont principalement utiles pour vous protéger contre les fuites de données des commerçants, le pistage peu sophistiqué ou la corrélation des achats par les agences de marketing, et le vol de données en ligne ; et **non pas** pour effectuer un achat de manière totalement anonyme. -!!! tip "Vérifiez votre banque" +
+

Check your current bank

- De nombreuses banques et fournisseurs de cartes de crédit proposent une fonctionnalité native de carte virtuelle. Si vous en utilisez une qui offre déjà cette option, vous devriez, dans la plupart des cas, l'utiliser plutôt que de suivre les recommandations suivantes. De cette manière, vous ne confiez pas vos informations personnelles à plusieurs personnes. +De nombreuses banques et fournisseurs de cartes de crédit proposent une fonctionnalité native de carte virtuelle. Si vous en utilisez une qui offre déjà cette option, vous devriez, dans la plupart des cas, l'utiliser plutôt que de suivre les recommandations suivantes. De cette manière, vous ne confiez pas vos informations personnelles à plusieurs personnes. + +
### Privacy.com (États-Unis) -!!! recommendation +
- ![logo Privacy.com](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![logo Privacy.com](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - L'offre gratuite de **Privacy.com** vous permet de créer jusqu'à 12 cartes virtuelles par mois, de fixer des limites de dépenses pour ces cartes et de les arrêter instantanément. Son offre payante vous permet de créer jusqu'à 36 cartes par mois, d'obtenir 1 % de remise en argent sur vos achats et de masquer les informations relatives aux transactions à votre banque. - - [:octicons-home-16: Page d'accueil](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![logo Privacy.com](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![logo Privacy.com](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +L'offre gratuite de **Privacy.com** vous permet de créer jusqu'à 12 cartes virtuelles par mois, de fixer des limites de dépenses pour ces cartes et de les arrêter instantanément. Son offre payante vous permet de créer jusqu'à 36 cartes par mois, d'obtenir 1 % de remise en argent sur vos achats et de masquer les informations relatives aux transactions à votre banque. + +[:octicons-home-16: Page d'accueil](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Politique de confidentialité" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com transmet par défaut à votre banque des informations sur les commerçants auprès desquels vous effectuez des achats. La fonction payante "marchands discrets" cache les informations relatives aux marchands à votre banque, de sorte que votre banque voit seulement qu'un achat a été effectué auprès de Privacy.com, mais pas où l'argent a été dépensé, mais ce n'est pas infaillible et, bien sûr, Privacy.com a toujours connaissance des marchands auprès desquels vous dépensez de l'argent. ### MySudo (États-Unis, payant) -!!! recommendation +
- ![logo MySudo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![logo MySudo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** fournit jusqu'à 9 cartes virtuelles en fonction de l'offre que vous prenez. Leurs offres payantes comprennent en outre des fonctionnalités qui peuvent être utiles pour effectuer des achats de façon privée, telles que des numéros de téléphone et des adresses email virtuels, bien que nous recommandions généralement d'autres [fournisseurs d'alias d'email](email.md) pour une utilisation plus poussée des alias d'email. - - [:octicons-home-16: Page d'accueil](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![logo MySudo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![logo MySudo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** fournit jusqu'à 9 cartes virtuelles en fonction de l'offre que vous prenez. Leurs offres payantes comprennent en outre des fonctionnalités qui peuvent être utiles pour effectuer des achats de façon privée, telles que des numéros de téléphone et des adresses email virtuels, bien que nous recommandions généralement d'autres [fournisseurs d'alias d'email](email.md) pour une utilisation plus poussée des alias d'email. + +[:octicons-home-16: Page d'accueil](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Politique de confidentialité" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
Les cartes virtuelles de MySudo ne sont actuellement disponibles que via leur application iOS. @@ -50,9 +61,12 @@ Les cartes virtuelles de MySudo ne sont actuellement disponibles que via leur ap **Veuillez noter que nous ne sommes affiliés à aucun des projets que nous recommandons.** En plus de [nos critères de base](about/criteria.md), nous avons développé un ensemble d'exigences claires pour nous permettre de fournir des recommandations objectives. Nous vous suggérons de vous familiariser avec cette liste avant de choisir d'utiliser un projet, et de mener vos propres recherches pour vous assurer que c'est le bon choix pour vous. -!!! example "Cette section est récente" +
+

Cette section est nouvelle

- Nous travaillons à l'établissement de critères définis pour chaque section de notre site, et celles-ci peuvent être sujet à changement. Si vous avez des questions sur nos critères, veuillez [poser la question sur notre forum](https://discuss.privacyguides.net/latest) et ne supposez pas que nous n'avons pas pris en compte un élément dans nos recommandations s'il ne figure pas dans la liste. De nombreux facteurs sont pris en compte et discutés lorsque nous recommandons un projet, et la documentation de chacun d'entre eux est en cours. +Nous travaillons à l'établissement de critères définis pour chaque section de notre site, et celles-ci peuvent être sujet à changement. Si vous avez des questions sur nos critères, veuillez [poser la question sur notre forum](https://discuss.privacyguides.net/latest) et ne supposez pas que nous n'avons pas pris en compte un élément dans nos recommandations s'il ne figure pas dans la liste. De nombreux facteurs sont pris en compte et discutés lorsque nous recommandons un projet, et la documentation de chacun d'entre eux est en cours. + +
- Permet de créer plusieurs cartes qui servent de bouclier entre le commerçant et vos finances personnelles. - Les cartes ne doivent pas vous obliger à fournir au commerçant des informations exactes sur l'adresse de facturation. @@ -63,23 +77,30 @@ Ces services vous permettent d'acheter des cartes-cadeaux pour une variété de ### CoinCards -!!! recommendation +
- ![Logo CoinCards](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (disponible aux Etats-Unis et au Canada) vous permet d'acheter des cartes-cadeaux auprès d'un grand nombre de commerçants. - - [:octicons-home-16: Page d'accueil](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Politique de confidentialité" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![Logo CoinCards](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (disponible aux Etats-Unis et au Canada) vous permet d'acheter des cartes-cadeaux auprès d'un grand nombre de commerçants. + +[:octicons-home-16: Page d'accueil](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Politique de confidentialité" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Critères **Veuillez noter que nous ne sommes affiliés à aucun des projets que nous recommandons.** En plus de [nos critères de base](about/criteria.md), nous avons développé un ensemble d'exigences claires pour nous permettre de fournir des recommandations objectives. Nous vous suggérons de vous familiariser avec cette liste avant de choisir d'utiliser un projet, et de mener vos propres recherches pour vous assurer que c'est le bon choix pour vous. -!!! example "Cette section est récente" +
+

Cette section est nouvelle

- Nous travaillons à l'établissement de critères définis pour chaque section de notre site, et celles-ci peuvent être sujet à changement. Si vous avez des questions sur nos critères, veuillez [poser la question sur notre forum](https://discuss.privacyguides.net/latest) et ne supposez pas que nous n'avons pas pris en compte un élément dans nos recommandations s'il ne figure pas dans la liste. De nombreux facteurs sont pris en compte et discutés lorsque nous recommandons un projet, et la documentation de chacun d'entre eux est en cours. +Nous travaillons à l'établissement de critères définis pour chaque section de notre site, et celles-ci peuvent être sujet à changement. Si vous avez des questions sur nos critères, veuillez [poser la question sur notre forum](https://discuss.privacyguides.net/latest) et ne supposez pas que nous n'avons pas pris en compte un élément dans nos recommandations s'il ne figure pas dans la liste. De nombreux facteurs sont pris en compte et discutés lorsque nous recommandons un projet, et la documentation de chacun d'entre eux est en cours. + +
- Accepte les paiements dans [une crypto-monnaie recommandée](cryptocurrency.md). - Pas d'obligation d'identification. diff --git a/i18n/fr/router.md b/i18n/fr/router.md index 086cf9a1..1bec912b 100644 --- a/i18n/fr/router.md +++ b/i18n/fr/router.md @@ -1,7 +1,7 @@ --- title: "Micrologiciel de routeur" icon: material/router-wireless -description: Ces systèmes d'exploitation alternatifs peuvent être utilisés pour sécuriser votre routeur ou votre point d'accès Wi-Fi. +description: These alternative operating systems can be used to secure your router or Wi-Fi access point. cover: router.webp --- @@ -9,32 +9,40 @@ Vous trouverez ci-dessous quelques systèmes d'exploitation alternatifs, qui peu ## OpenWrt -!!! recommendation +
- ![Logo OpenWrt](assets/img/router/openwrt.svg#only-light){ align=right } - ![Logo OpenWrt](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** est un système d'exploitation basé sur Linux ; il est principalement utilisé sur les périphériques embarqués pour acheminer le trafic réseau. Il comprend util-linux, uClibc, et BusyBox. Tous les composants ont été optimisés pour les routeurs domestiques. - - [:octicons-home-16: Page d'accueil](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Code source" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribuer } +![Logo OpenWrt](assets/img/router/openwrt.svg#only-light){ align=right } +![Logo OpenWrt](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** est un système d'exploitation basé sur Linux ; il est principalement utilisé sur les périphériques embarqués pour acheminer le trafic réseau. Il comprend util-linux, uClibc, et BusyBox. Tous les composants ont été optimisés pour les routeurs domestiques. + +[:octicons-home-16: Page d'accueil](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Code source" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribuer } + + + +
Vous pouvez consulter le [tableau de matériel](https://openwrt.org/toh/start) d'OpenWrt pour vérifier si votre périphérique est pris en charge. ## OPNsense -!!! recommendation +
- ![logo OPNsense](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** est une plateforme de routage et de pare-feu open source basée sur FreeBSD qui intègre de nombreuses fonctionnalités avancées telles que la mise en forme du trafic, l'équilibrage de charge et des capacités VPN, avec de nombreuses autres fonctionnalités disponibles sous forme de plugins. OPNsense est généralement déployé comme pare-feu de périmètre, routeur, point d'accès sans fil, serveur DHCP, serveur DNS et point de terminaison VPN. - - [:octicons-home-16: Page d'accueil](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Code source" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribuer } +![logo OPNsense](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** est une plateforme de routage et de pare-feu open source basée sur FreeBSD qui intègre de nombreuses fonctionnalités avancées telles que la mise en forme du trafic, l'équilibrage de charge et des capacités VPN, avec de nombreuses autres fonctionnalités disponibles sous forme de plugins. OPNsense est généralement déployé comme pare-feu de périmètre, routeur, point d'accès sans fil, serveur DHCP, serveur DNS et point de terminaison VPN. + +[:octicons-home-16: Page d'accueil](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Code source" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribuer } + + + +
OPNsense a été développé à l'origine comme un fork de [pfSense](https://fr.wikipedia.org/wiki/PfSense), et les deux projets sont connus pour être des distributions de pare-feu gratuites et fiables qui offrent des fonctionnalités que l'on ne trouve souvent que dans les pare-feu commerciaux coûteux. Lancé en 2015, les développeurs d'OPNsense [ont cité](https://docs.opnsense.org/history/thefork.html) un certain nombre de problèmes de sécurité et de qualité du code de pfSense qui, selon eux, nécessitaient un fork du projet, ainsi que des préoccupations concernant l'acquisition majoritaire de pfSense par Netgate et l'orientation future du projet pfSense. @@ -42,9 +50,12 @@ OPNsense a été développé à l'origine comme un fork de [pfSense](https://fr. **Veuillez noter que nous ne sommes affiliés à aucun des projets que nous recommandons.** En plus de [nos critères de base](about/criteria.md), nous avons développé un ensemble d'exigences claires pour nous permettre de fournir des recommandations objectives. Nous vous suggérons de vous familiariser avec cette liste avant de choisir d'utiliser un projet, et de mener vos propres recherches pour vous assurer que c'est le bon choix pour vous. -!!! example "Cette section est récente" +
+

Cette section est nouvelle

- Nous travaillons à l'établissement de critères définis pour chaque section de notre site, et celles-ci peuvent être sujet à changement. Si vous avez des questions sur nos critères, veuillez [poser la question sur notre forum](https://discuss.privacyguides.net/latest) et ne supposez pas que nous n'avons pas pris en compte un élément dans nos recommandations s'il ne figure pas dans la liste. De nombreux facteurs sont pris en compte et discutés lorsque nous recommandons un projet, et la documentation de chacun d'entre eux est en cours. +Nous travaillons à l'établissement de critères définis pour chaque section de notre site, et celles-ci peuvent être sujet à changement. Si vous avez des questions sur nos critères, veuillez [poser la question sur notre forum](https://discuss.privacyguides.net/latest) et ne supposez pas que nous n'avons pas pris en compte un élément dans nos recommandations s'il ne figure pas dans la liste. De nombreux facteurs sont pris en compte et discutés lorsque nous recommandons un projet, et la documentation de chacun d'entre eux est en cours. + +
- Doit être open-source. - Doit recevoir des mises à jour régulières. diff --git a/i18n/he/android.md b/i18n/he/android.md index f0362313..83836ea7 100644 --- a/i18n/he/android.md +++ b/i18n/he/android.md @@ -1,14 +1,14 @@ --- -meta_title: "המלצות אנדרואיד: GrapheneOS ו-DivestOS - מדריכי פרטיות" +meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" title: "אנדרואיד" icon: 'simple/android' -description: אתה יכול להחליף את מערכת ההפעלה בטלפון האנדרואיד שלך בחלופות מאובטחות ומכבדות פרטיות אלה. +description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: - "@context": http://schema.org "@type": WebPage - name: מערכות הפעלה פרטיות לאנדרואיד + name: Private Android Operating Systems url: "./" - "@context": http://schema.org @@ -45,7 +45,7 @@ schema: name: Pixel brand: "@type": Brand - name: גוגל + name: Google image: /assets/img/android/google-pixel.png sameAs: https://en.wikipedia.org/wiki/Google_Pixel review: @@ -95,26 +95,31 @@ schema: אנו ממליצים להתקין במכשיר שלך אחת ממערכות ההפעלה המותאמות אישית של אנדרואיד, המפורטות לפי סדר העדפה, בהתאם לתאימות המכשיר שלך למערכות הפעלה אלו. -!!! note "הערה" +
+

Note

- למכשירי סוף החיים (כגון מכשירי "תמיכה מורחבת" של GrapheneOS או CalyxOS) אין תיקוני אבטחה מלאים (עדכוני קושחה) עקב הפסקת התמיכה של OEM. מכישירים אלה אינם יכולים להיחשב מאובטחים לחלוטין ללא קשר לתוכנה המותקנת. +למכשירי סוף החיים (כגון מכשירי "תמיכה מורחבת" של GrapheneOS או CalyxOS) אין תיקוני אבטחה מלאים (עדכוני קושחה) עקב הפסקת התמיכה של OEM. מכישירים אלה אינם יכולים להיחשב מאובטחים לחלוטין ללא קשר לתוכנה המותקנת. + +
### GrapheneOS -!!! recommendation +
- ![לוגו GrapheneOS](assets/img/android/grapheneos.svg#only-light){ align=right } - ![לוגו GrapheneOS](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** היא הבחירה הטובה ביותר בכל הנוגע לפרטיות ואבטחה. - - GrapheneOS מספקת [הקשחת אבטחה](https://en.wikipedia.org/wiki/Hardening_(computing)) ושיפורי פרטיות נוספים. יש לו [מקצה זיכרון מוקשה](https://github.com/GrapheneOS/hardened_malloc), הרשאות רשת וחיישנים ועוד [תכונות אבטחה](https://grapheneos.org/features) שונות. GrapheneOS מגיעה גם עם עדכוני קושחה מלאים ו-builds חתומים, כך שאתחול מאומת נתמך באופן מלא. - - [:octicons-home-16: דף הבית](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="מדיניות פרטיות" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=תיעוד} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="קוד מקור" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=תרומה } +![לוגו GrapheneOS](assets/img/android/grapheneos.svg#only-light){ align=right } +![לוגו GrapheneOS](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** היא הבחירה הטובה ביותר בכל הנוגע לפרטיות ואבטחה. + +GrapheneOS מספקת [הקשחת אבטחה](https://en.wikipedia.org/wiki/Hardening_(computing)) ושיפורי פרטיות נוספים. יש לו [מקצה זיכרון מוקשה](https://github.com/GrapheneOS/hardened_malloc), הרשאות רשת וחיישנים ועוד [תכונות אבטחה](https://grapheneos.org/features) שונות. GrapheneOS מגיעה גם עם עדכוני קושחה מלאים ו-builds חתומים, כך שאתחול מאומת נתמך באופן מלא. + +[:octicons-home-16: דף הבית](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="מדיניות פרטיות" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=תיעוד} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="קוד מקור" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=תרומה } + +
GrapheneOS תומך ב-[Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), המריץ את [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) בארגז חול מלא כמו כל אפליקציה רגילה אחרת. משמעות הדבר היא שאתה יכול לנצל את רוב שירותי Google Play, כגון [הודעות דחיפה](https://firebase.google.com/docs/cloud-messaging/), תוך מתן שליטה מלאה על ההרשאות והגישה שלהם, ותוך כדי הכללתן ב[פרופיל עבודה](os/android-overview.md#work-profile) או [פרופיל משתמש](os/android-overview.md#user-profiles) ספציפי לבחירתך. @@ -124,19 +129,21 @@ GrapheneOS תומך ב-[Sandboxed Google Play](https://grapheneos.org/usage#sand ### DivestOS -!!! recommendation +
- ![לוגו של DivestOS](assets/img/android/divestos.svg){ align=right } - - **DivestOS** הוא נגזרת חלקית של [LineageOS](https://lineageos.org/). - DivestOS יורשת [מכשירים נתמכים](https://divestos.org/index.php?page=devices&base=LineageOS) רבים מ-LineageOS. יש לו builds חתומים, מה שמאפשר לקבל [אתחול מאומת](https://source.android.com/security/verifiedboot) בחלק מהמכשירים שאינם Pixel. - - [:octicons-home-16: דף הבית](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="שירות בצל" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="מדיניות פרטיות" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=תיעוד} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="קוד מקור" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=לתרומה } +![לוגו של DivestOS](assets/img/android/divestos.svg){ align=right } + +**DivestOS** הוא נגזרת חלקית של [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. יש לו builds חתומים, מה שמאפשר לקבל [אתחול מאומת](https://source.android.com/security/verifiedboot) בחלק מהמכשירים שאינם Pixel. + +[:octicons-home-16: דף הבית](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="שירות בצל" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="מדיניות פרטיות" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=תיעוד} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="קוד מקור" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=לתרומה } + +
ל - DivestOS יש פגיעות ליבה ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [שמתוקן](https://gitlab.com/divested-mobile/cve_checker) אוטומטית, פחות בועות קנייניות, וקובץ [מארחים](https://divested.dev/index.php?page=dnsbl) מותאם. ה-WebView המוקשה שלו, [Mulch](https://gitlab.com/divested-mobile/mulch), מאפשר [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) עבור כל הארכיטקטורות ו[חלוקת מצבי רשת](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), ומקבל עדכונים מחוץ לפס. DivestOS כוללת גם תיקוני ליבה מ-GrapheneOS ומאפשרת את כל תכונות האבטחה הזמינות של הליבה באמצעות [הקשחת defconfig](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). כל הליבות החדשות יותר מגרסה 3.4 כוללים עמוד מלא [חיטוי](https://lwn.net/Articles/334747/) ולכל ~22 הליבות המחוברים יש Clang [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) מופעל. @@ -144,11 +151,14 @@ DivestOS מיישמת כמה תיקוני הקשחת מערכת שפותחו ב DivestOS משתמשת ב-F-Droid כחנות האפליקציות המוגדרת כברירת מחדל. בדרך כלל אנו [ממליצים להימנע מ-F-Droid](#f-droid), אך אין לעשות זאת ב-DivestOS; המפתחים מעדכנים את האפליקציות שלהם באמצעות מאגרי F-Droid משלהם ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). אנו ממליצים להשבית את אפליקציית F-Droid הרשמית ולהשתמש ב- [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **עם מאגרי DivestOS מופעלים** כדי לשמור על רכיבים אלה מעודכנים. לגבי אפליקציות אחרות, השיטות המומלצות שלנו להשגתן עדיין חלות. -!!! warning "אזהרה" +
+

Warning

- עדכון קושחה של DivestOS [סטטוס](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) ובקרת איכות משתנים בין המכשירים שבהם הוא תומך. אנו עדיין ממליצים על GrapheneOS בהתאם לתאימות המכשיר שלך. עבור מכשירים אחרים, DivestOS היא אלטרנטיבה טובה. - - לא לכל המכשירים הנתמכים יש אתחול מאומת, וחלקם מבצעים אותו טוב יותר מאחרים. +עדכון קושחה של DivestOS [סטטוס](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) ובקרת איכות משתנים בין המכשירים שבהם הוא תומך. אנו עדיין ממליצים על GrapheneOS בהתאם לתאימות המכשיר שלך. עבור מכשירים אחרים, DivestOS היא אלטרנטיבה טובה. + +לא לכל המכשירים הנתמכים יש אתחול מאומת, וחלקם מבצעים אותו טוב יותר מאחרים. + +
## מכשירי אנדרואיד @@ -156,7 +166,7 @@ DivestOS משתמשת ב-F-Droid כחנות האפליקציות המוגדרת הימנע מרכישת טלפונים ממפעילי רשתות סלולריות. לאלה יש לרוב **מאתחול נעול** ואינם תומכים ב[פתיחת נעילה של OEM](https://source.android.com/devices/bootloader/locking_unlocking). גרסאות טלפון אלה ימנעו ממך להתקין כל סוג של הפצת אנדרואיד חלופית. -היה מאוד **זהיר** בקניית טלפונים יד שנייה משוק אונליין. בדוק תמיד את המוניטין של המוכר. אם המכשיר נגנב, קיימת אפשרות ל[רשימה שחורה של IMEI](https://www.gsma.com/security/resources/imei-blacklisting/). קיים גם סיכון שכרוך בהיותך קשור לפעילות של הבעלים הקודם. +היה מאוד **זהיר** בקניית טלפונים יד שנייה משוק אונליין. בדוק תמיד את המוניטין של המוכר. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). קיים גם סיכון שכרוך בהיותך קשור לפעילות של הבעלים הקודם. עוד כמה טיפים לגבי מכשירי אנדרואיד ותאימות מערכות הפעלה: @@ -168,15 +178,17 @@ DivestOS משתמשת ב-F-Droid כחנות האפליקציות המוגדרת טלפונים של גוגל פיקסל הם המכשירים **היחידים** שאנו ממליצים לרכישה. לטלפונים של Pixel יש אבטחת חומרה חזקה יותר מכל מכשירי אנדרואיד אחרים הקיימים כיום בשוק, בשל תמיכת AVB נאותה עבור מערכות הפעלה של צד שלישי ושבבי האבטחה המותאמים אישית [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) של גוגל הפועלים כ-Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - מכשירי **גוגל פיקסל** ידועים כבעלי אבטחה טובה ותומכים כראוי ב[אתחול מאומת](https://source.android.com/security/verifiedboot), גם בעת התקנת מערכות הפעלה מותאמות אישית. - - החל מ-**Pixel 8** ו-**8 Pro**, מכשירי Pixel מקבלים לפחות 7 שנים של עדכוני אבטחה מובטחים, מה שמבטיח תוחלת חיים ארוכה בהרבה בהשוואה ל-2-5 שנים שמציעות בדרך כלל יצרני OEM מתחרים. - - [:material-shopping: חנות](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +מכשירי **גוגל פיקסל** ידועים כבעלי אבטחה טובה ותומכים כראוי ב[אתחול מאומת](https://source.android.com/security/verifiedboot), גם בעת התקנת מערכות הפעלה מותאמות אישית. + +החל מ-**Pixel 8** ו-**8 Pro**, מכשירי Pixel מקבלים לפחות 7 שנים של עדכוני אבטחה מובטחים, מה שמבטיח תוחלת חיים ארוכה בהרבה בהשוואה ל-2-5 שנים שמציעות בדרך כלל יצרני OEM מתחרים. + +[:material-shopping: חנות](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
רכיבים מאובטחים כמו Titan M2 מוגבלים יותר מסביבת הביצוע המהימנה של המעבד המשמשת את רוב הטלפונים האחרים מכיוון שהם משמשים רק לאחסון סודות, הוכחת חומרה והגבלת קצב, לא להפעלת תוכניות "מהימנות". טלפונים ללא Secure Element חייבים להשתמש ב-TEE עבור *כל* הפונקציות הללו, וכתוצאה מכך משטח התקפה גדול יותר. @@ -198,43 +210,53 @@ DivestOS משתמשת ב-F-Droid כחנות האפליקציות המוגדרת ### Shelter -!!! recommendation +
- ![Shelter לוגו](assets/img/android/shelter.svg){ align=right } - - **Shelter** היא אפליקציה שעוזרת לך למנף את הפונקציונליות של פרופיל העבודה של אנדרואיד כדי לבודד או לשכפל אפליקציות במכשיר שלך. - - Shelter תומך בחסימת פרופילים חוצי חיפוש אנשי קשר ושיתוף קבצים בין פרופילים באמצעות מנהל הקבצים המוגדר כברירת מחדל ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: מאגר](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="קוד מקור" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=לתרומה } +![Shelter לוגו](assets/img/android/shelter.svg){ align=right } -!!! warning "אזהרה" +**Shelter** היא אפליקציה שעוזרת לך למנף את הפונקציונליות של פרופיל העבודה של אנדרואיד כדי לבודד או לשכפל אפליקציות במכשיר שלך. - Shelter מומלץ מעל [Insular](https://secure-system.gitlab.io/Insular/) ו-[Island](https://github.com/oasisfeng/island) מכיוון שהוא תומך ב[חסימת חיפוש אנשי קשר](https://secure-system.gitlab.io/Insular/faq.html). - - כשאתה משתמש ב-Shelter, אתה נותן אמון מלא במפתח שלו, שכן Shelter פועל כ[מנהל מכשיר](https://developer.android.com/guide/topics/admin/device-admin) כדי ליצור את פרופיל העבודה, וכן יש לו גישה נרחבת לנתונים המאוחסנים בפרופיל העבודה. +Shelter תומך בחסימת פרופילים חוצי חיפוש אנשי קשר ושיתוף קבצים בין פרופילים באמצעות מנהל הקבצים המוגדר כברירת מחדל ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: מאגר](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="קוד מקור" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=לתרומה } + +
+ +
+

Warning

+ +Shelter מומלץ מעל [Insular](https://secure-system.gitlab.io/Insular/) ו-[Island](https://github.com/oasisfeng/island) מכיוון שהוא תומך ב[חסימת חיפוש אנשי קשר](https://secure-system.gitlab.io/Insular/faq.html). + +כשאתה משתמש ב-Shelter, אתה נותן אמון מלא במפתח שלו, שכן Shelter פועל כ[מנהל מכשיר](https://developer.android.com/guide/topics/admin/device-admin) כדי ליצור את פרופיל העבודה, וכן יש לו גישה נרחבת לנתונים המאוחסנים בפרופיל העבודה. + +
### Secure Camera -!!! recommendation +
- ![Secure camera לוגו](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera לוגו](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** היא אפליקציית מצלמה המתמקדת בפרטיות ואבטחה שיכולה לצלם תמונות, סרטונים וקודי QR. הרחבות של ספקי CameraX (פורטרט, HDR, ראיית לילה, ריטוש פנים ואוטומטי) נתמכות גם במכשירים זמינים. - - [:octicons-repo-16: מאגר](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=תיעוד} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="קוד מקור" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=לתרומה } - - ??? downloads "הורדות" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera לוגו](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera לוגו](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** היא אפליקציית מצלמה המתמקדת בפרטיות ואבטחה שיכולה לצלם תמונות, סרטונים וקודי QR. הרחבות של ספקי CameraX (פורטרט, HDR, ראיית לילה, ריטוש פנים ואוטומטי) נתמכות גם במכשירים זמינים. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
תכונות הפרטיות העיקריות כוללות: @@ -242,50 +264,63 @@ DivestOS משתמשת ב-F-Droid כחנות האפליקציות המוגדרת - שימוש בממשק ה-API החדש של ה[מדיה](https://developer.android.com/training/data-storage/shared/media), לכן אין צורך ב[הרשאות אחסון](https://developer.android.com/training/data-storage) - אין צורך בהרשאת מיקרופון אלא אם ברצונך להקליט קול -!!! note "הערה" +
+

Note

- מטא נתונים אינם נמחקים כעת מקבצי וידאו אבל זה מתוכנן. - - המטא נתונים של כיוון התמונה לא נמחקים. אם תפעיל מיקום ב(Secure Camera) זה גם **לא** יימחק. אם ברצונך למחוק זאת מאוחר יותר, יהיה עליך להשתמש באפליקציה חיצונית כגון [ExifEraser](data-redaction.md#exiferaser). +מטא נתונים אינם נמחקים כעת מקבצי וידאו אבל זה מתוכנן. + +המטא נתונים של כיוון התמונה לא נמחקים. אם תפעיל מיקום ב(Secure Camera) זה גם **לא** יימחק. אם ברצונך למחוק זאת מאוחר יותר, יהיה עליך להשתמש באפליקציה חיצונית כגון [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer לוגו](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer לוגו](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** הוא מציג PDF המבוסס על [pdf.js](https://en.wikipedia.org/wiki/PDF.js) שאינו דורש הרשאות כלשהן. ה-PDF מוזן לתוך [ארגז חול](https://en.wikipedia.org/wiki/Sandbox_(software_development))[webview](https://developer.android.com/guide/webapps/webview). המשמעות היא שזה לא דורש הרשאה ישירה כדי לגשת לתוכן או לקבצים. - - [תוכן-אבטחה-מדיניות](https://en.wikipedia.org/wiki/Content_Security_Policy) משמש כדי לאכוף שמאפייני JavaScript והסגנון ב-WebView הם תוכן סטטי לחלוטין. - - [:octicons-repo-16: מאגר](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="קוד מקור" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=לתרומה } - - ??? downloads "הורדות" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer לוגו](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer לוגו](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** הוא מציג PDF המבוסס על [pdf.js](https://en.wikipedia.org/wiki/PDF.js) שאינו דורש הרשאות כלשהן. ה-PDF מוזן לתוך [ארגז חול](https://en.wikipedia.org/wiki/Sandbox_(software_development))[webview](https://developer.android.com/guide/webapps/webview). המשמעות היא שזה לא דורש הרשאה ישירה כדי לגשת לתוכן או לקבצים. + +[תוכן-אבטחה-מדיניות](https://en.wikipedia.org/wiki/Content_Security_Policy) משמש כדי לאכוף שמאפייני JavaScript והסגנון ב-WebView הם תוכן סטטי לחלוטין. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## קבלת בקשות ### Obtainium -!!! recommendation +
- ![Obtainium לוגו](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** הוא מנהל אפליקציות המאפשר לך להתקין ולעדכן אפליקציות ישירות מדף ההפצות של המפתח עצמו (כלומר. GitHub, GitLab, אתר האינטרנט של המפתח וכו'), במקום חנות/מאגר אפליקציות מרכזי. הוא תומך בעדכוני רקע אוטומטיים באנדרואיד 12 ומעלה. - - [:octicons-repo-16: מאגר](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="קוד מקור" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=לתרומה } - - ??? downloads "הורדות" - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium לוגו](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** הוא מנהל אפליקציות המאפשר לך להתקין ולעדכן אפליקציות ישירות מדף ההפצות של המפתח עצמו (כלומר. GitHub, GitLab, אתר האינטרנט של המפתח וכו'), במקום חנות/מאגר אפליקציות מרכזי. הוא תומך בעדכוני רקע אוטומטיים באנדרואיד 12 ומעלה. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium מאפשר לך להוריד קבצי התקנת APK ממגוון רחב של מקורות, וזה תלוי בך לוודא שהמקורות והאפליקציות האלה לגיטימיים. לדוגמה, השימוש ב-Obtainium כדי להתקין את Signal מ[דף הנחיתה של סיגנל APK](https://signal.org/android/apk/) אמור להיות בסדר, אבל התקנה ממאגרי APK של צד שלישי כמו Aptoide או APKPure עלולים להוות סיכונים נוספים. הסיכון של התקנת *עדכון* זדוני נמוך יותר, מכיוון שאנדרואיד עצמו מוודא שכל עדכוני האפליקציה חתומים על ידי אותו מפתח כמו האפליקציה הקיימת בטלפון שלך לפני התקנתם. @@ -297,19 +332,24 @@ Obtainium מאפשר לך להוריד קבצי התקנת APK ממגוון רח חנות Google Play דורשת חשבון Google כדי להתחבר וזה לא נהדר לפרטיות. אתה יכול לעקוף את זה על ידי שימוש בלקוח חלופי, כגון Aurora Store. -!!! recommendation +
- ![Aurora Store לוגו](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** היא לקוח של חנות Google Play שאינה דורשת חשבון Google, שירותי Google Play או microG כדי להוריד אפליקציות. - - [:octicons-home-16: דף הבית](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="מדיניות הפרטיות" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="קוד מקור" } - - ??? downloads "הורדות" - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store לוגו](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** היא לקוח של חנות Google Play שאינה דורשת חשבון Google, שירותי Google Play או microG כדי להוריד אפליקציות. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store לא מאפשרת להוריד אפליקציות בתשלום עם תכונת החשבון האנונימי שלהן. אתה יכול לחלופין להתחבר עם חשבון גוגל שלך ל-Aurora Store כדי להוריד אפליקציות שרכשת, מה שאכן נותן גישה לרשימת האפליקציות שהתקנת לגוגל, אולם אתה עדיין נהנה מכך שאינך דורש את לקוח Google Play המלא ואת Google Play Services או microG במכשיר שלך. @@ -374,17 +414,23 @@ For apps that are released on platforms like GitHub and GitLab, you may be able עם זאת, [F-Droid](https://f-droid.org/en/packages/) ו-[IzzyOnDroid](https://apt.izzysoft.de/fdroid/) הם ביתם של אינספור אפליקציות, כך שהם יכולים להוות כלי שימושי לחיפוש ולגלות אפליקציות קוד פתוח שתוכל להוריד באמצעים אחרים כגון Play Store, Aurora Store, או על ידי קבלת ה-APK ישירות מהמפתח. כדאי להשתמש במיטב שיקול הדעת כשאתה מחפש אפליקציות חדשות בשיטה זו, ולעקוב אחר התדירות שבה האפליקציה מתעדכנת. אפליקציות מיושנות עשויות להסתמך על ספריות שאינן נתמכות, בין היתר, מהוות סיכון אבטחה פוטנציאלי. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- במקרים נדירים מסוימים, מפתח אפליקציה יפיץ אותה רק באמצעות F-Droid ([Gadgetbridge](https://gadgetbridge.org/) היא דוגמה אחת לכך). אם אתה באמת צריך אפליקציה כזו, אנו ממליצים להשתמש בלקוח החדש יותר [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) במקום ב-F-Droid המקורי אפליקציה כדי להשיג אותו. F-Droid Basic יכול לבצע עדכונים ללא השגחה ללא הרחבה או שורש מורשים, ויש לו מערך תכונות מופחת (הגבלת משטח ההתקפה). +במקרים נדירים מסוימים, מפתח אפליקציה יפיץ אותה רק באמצעות F-Droid ([Gadgetbridge](https://gadgetbridge.org/) היא דוגמה אחת לכך). אם אתה באמת צריך אפליקציה כזו, אנו ממליצים להשתמש בלקוח החדש יותר [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) במקום ב-F-Droid המקורי אפליקציה כדי להשיג אותו. F-Droid Basic יכול לבצע עדכונים ללא השגחה ללא הרחבה או שורש מורשים, ויש לו מערך תכונות מופחת (הגבלת משטח ההתקפה). + +
## קריטריונים **שים לב שאיננו קשורים לאף אחד מהפרויקטים שאנו ממליצים עליהם.** בנוסף ל [הקריטריונים הסטנדרטיים שלנו](about/criteria.md), פיתחנו סט ברור של דרישות כדי לאפשר לנו לספק המלצות אובייקטיביות. אנו מציעים לך להכיר את הרשימה הזו לפני שתבחר להשתמש בפרויקט, ולערוך מחקר משלך כדי להבטיח שזו הבחירה הנכונה עבורך. -!!! example "חלק זה הוא חדש" +
+

This section is new

- אנו עובדים על קביעת קריטריונים מוגדרים לכל קטע באתר שלנו, והדבר עשוי להשתנות. אם יש לך שאלות כלשהן לגבי הקריטריונים שלנו, אנא [שאל בפורום שלנו](https://discuss.privacyguides.net/latest) ואל תניח שלא שקלנו משהו כשהצענו את ההמלצות שלנו אם הוא לא רשום כאן. ישנם גורמים רבים שנחשבים ונדונים כאשר אנו ממליצים על פרויקט, ותיעוד כל אחד מהם הוא עבודה בתהליך. +אנו עובדים על קביעת קריטריונים מוגדרים לכל קטע באתר שלנו, והדבר עשוי להשתנות. אם יש לך שאלות כלשהן לגבי הקריטריונים שלנו, אנא [שאל בפורום שלנו](https://discuss.privacyguides.net/latest) ואל תניח שלא שקלנו משהו כשהצענו את ההמלצות שלנו אם הוא לא רשום כאן. ישנם גורמים רבים שנחשבים ונדונים כאשר אנו ממליצים על פרויקט, ותיעוד כל אחד מהם הוא עבודה בתהליך. + +
### מערכות הפעלה diff --git a/i18n/he/calendar.md b/i18n/he/calendar.md index 9e019946..0a9d76c2 100644 --- a/i18n/he/calendar.md +++ b/i18n/he/calendar.md @@ -1,7 +1,7 @@ --- title: "סנכרון לוח שנה" icon: material/calendar -description: לוחות שנה מכילים חלק מהנתונים הרגישים ביותר שלך; השתמש במוצרים המטמיעים הצפנה במנוחה. +description: Calendars contain some of your most sensitive data; use products that implement encryption at rest. cover: calendar.webp --- @@ -9,48 +9,58 @@ cover: calendar.webp ## Tuta -!!! recommendation +
- ![Tuta לוגו](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** מציעה לוח שנה בחינם ומוצפן על פני הפלטפורמות הנתמכות שלהם. התכונות כוללות: E2EE אוטומטי של כל הנתונים, תכונות שיתוף, פונקציונליות ייבוא/ייצוא, אימות רב-גורמי ו-[עוד](https://tuta.com/calendar-app-comparison/). - - מספר לוחות שנה ופונקציונליות שיתוף מורחבת מוגבלים למנויים בתשלום. - - [:octicons-home-16: דף הבית](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="מדיניות הפרטיות" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=תיעוד} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="קוד מקור" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=לתרומה } - - ??? downloads "הורדות" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta לוגו](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** מציעה לוח שנה בחינם ומוצפן על פני הפלטפורמות הנתמכות שלהם. התכונות כוללות: E2EE אוטומטי של כל הנתונים, תכונות שיתוף, פונקציונליות ייבוא/ייצוא, אימות רב-גורמי ו-[עוד](https://tuta.com/calendar-app-comparison/). + +מספר לוחות שנה ופונקציונליות שיתוף מורחבת מוגבלים למנויים בתשלום. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** הוא שירות לוח שנה מוצפן הזמין לחברי Proton דרך לקוחות אינטרנט או ניידים. התכונות כוללות: E2EE אוטומטי של כל הנתונים, תכונות שיתוף, פונקציונליות ייבוא/ייצוא [ועוד](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. פונקציונליות השיתוף המורחבת מוגבלת גם למנויים בתשלום. - - [:octicons-home-16: דף הבית](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="מדיניות פרטיות" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=תיעוד} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="קוד מקור" } - - ??? downloads "הורדות" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** הוא שירות לוח שנה מוצפן הזמין לחברי Proton דרך לקוחות אינטרנט או ניידים. התכונות כוללות: E2EE אוטומטי של כל הנתונים, תכונות שיתוף, פונקציונליות ייבוא/ייצוא [ועוד](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. פונקציונליות השיתוף המורחבת מוגבלת גם למנויים בתשלום. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **שים לב שאיננו קשורים לאף אחד מהפרויקטים שאנו ממליצים עליהם.** בנוסף ל [הקריטריונים הסטנדרטיים שלנו](about/criteria.md), פיתחנו סט ברור של דרישות כדי לאפשר לנו לספק המלצות אובייקטיביות. אנו מציעים לך להכיר את הרשימה הזו לפני שתבחר להשתמש בפרויקט, ולערוך מחקר משלך כדי להבטיח שזו הבחירה הנכונה עבורך. -!!! example "חלק זה הוא חדש" +
+

This section is new

- אנו עובדים על קביעת קריטריונים מוגדרים לכל קטע באתר שלנו, והדבר עשוי להשתנות. אם יש לך שאלות כלשהן לגבי הקריטריונים שלנו, אנא [שאל בפורום שלנו](https://discuss.privacyguides.net/latest) ואל תניח שלא שקלנו משהו כשהצענו את ההמלצות שלנו אם הוא לא רשום כאן. ישנם גורמים רבים שנחשבים ונדונים כאשר אנו ממליצים על פרויקט, ותיעוד כל אחד מהם הוא עבודה בתהליך. +אנו עובדים על קביעת קריטריונים מוגדרים לכל קטע באתר שלנו, והדבר עשוי להשתנות. אם יש לך שאלות כלשהן לגבי הקריטריונים שלנו, אנא [שאל בפורום שלנו](https://discuss.privacyguides.net/latest) ואל תניח שלא שקלנו משהו כשהצענו את ההמלצות שלנו אם הוא לא רשום כאן. ישנם גורמים רבים שנחשבים ונדונים כאשר אנו ממליצים על פרויקט, ותיעוד כל אחד מהם הוא עבודה בתהליך. + +
### כישורים מינימליים diff --git a/i18n/he/cloud.md b/i18n/he/cloud.md index 8fb7dadb..8d344f46 100644 --- a/i18n/he/cloud.md +++ b/i18n/he/cloud.md @@ -10,29 +10,37 @@ cover: cloud.webp אם חלופות אלה אינן מתאימות לצרכים שלך, אנו מציעים לך לבדוק שימוש בתוכנת הצפנה כמו [Cryptomator](encryption.md#cryptomator-cloud) עם ספק ענן אחר. שימוש ב-Cryptomator בשילוב עם **כל** ספק ענן (כולל אלה) עשוי להיות רעיון טוב כדי להפחית את הסיכון לפגמי הצפנה אצל הלקוחות המקומיים של הספק. -??? השאלה "מחפשים את NextCloud?" +
+Looking for Nextcloud? - Nextcloud הוא [עדיין כלי מומלץ](productivity.md) לאירוח עצמי של חבילת ניהול קבצים, אולם איננו ממליצים כרגע על ספקי אחסון Nextcloud של צד שלישי, מכיוון שאנו [לא ממליצים](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29)פונקציונליות ה-E2EE המובנית של Nextcloud למשתמשים ביתיים. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive לוגו](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** הוא ספק אחסון ענן מוצפן שוויצרי מספק האימייל המוצפן הפופולרי [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: דף הבית](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="מדיניות פרטיות" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=תיעוד} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="קוד מקור" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive לוגו](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** הוא ספק אחסון ענן מוצפן שוויצרי מספק האימייל המוצפן הפופולרי [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
אפליקציית האינטרנט של Proton Drive נבדקה באופן עצמאי על ידי Securitum ב[2021](https://proton.me/blog/security-audit-all-proton-apps), הפרטים המלאים לא זמינים, אך במכתב האישור של Securitum נאמר: @@ -42,23 +50,28 @@ cover: cloud.webp ## Tresorit -!!! recommendation +
- ![Tresorit לוגו](assets/img/cloud/tresorit.svg){ align=right } - - ** Tresorit ** הוא ספק אחסון ענן מוצפן שוויצרי-הונגרי שנוסד בשנת 2011. Tresorit נמצאת בבעלות ה-Swiss Post, שירות הדואר הלאומי של שוויץ. - - [:octicons-home-16: דף הבית](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="מדיניות פרטיות" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=תיעוד} - - ??? downloads "הורדות" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit לוגו](assets/img/cloud/tresorit.svg){ align=right } + +** Tresorit ** הוא ספק אחסון ענן מוצפן שוויצרי-הונגרי שנוסד בשנת 2011. Tresorit נמצאת בבעלות ה-Swiss Post, שירות הדואר הלאומי של שוויץ. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit קיבלה מספר ביקורות אבטחה עצמאיות: @@ -76,9 +89,12 @@ Tresorit קיבלה מספר ביקורות אבטחה עצמאיות: **שים לב שאיננו קשורים לאף אחד מהפרויקטים שאנו ממליצים עליהם.** בנוסף ל [הקריטריונים הסטנדרטיים שלנו](about/criteria.md), פיתחנו סט ברור של דרישות כדי לאפשר לנו לספק המלצות אובייקטיביות. אנו מציעים לך להכיר את הרשימה הזו לפני שתבחר להשתמש בפרויקט, ולערוך מחקר משלך כדי להבטיח שזו הבחירה הנכונה עבורך. -!!! example "חלק זה הוא חדש" +
+

This section is new

- אנו עובדים על קביעת קריטריונים מוגדרים לכל קטע באתר שלנו, והדבר עשוי להשתנות. אם יש לך שאלות כלשהן לגבי הקריטריונים שלנו, אנא [שאל בפורום שלנו](https://discuss.privacyguides.net/latest) ואל תניח שלא שקלנו משהו כשהצענו את ההמלצות שלנו אם הוא לא רשום כאן. ישנם גורמים רבים שנחשבים ונדונים כאשר אנו ממליצים על פרויקט, ותיעוד כל אחד מהם הוא עבודה בתהליך. +אנו עובדים על קביעת קריטריונים מוגדרים לכל קטע באתר שלנו, והדבר עשוי להשתנות. אם יש לך שאלות כלשהן לגבי הקריטריונים שלנו, אנא [שאל בפורום שלנו](https://discuss.privacyguides.net/latest) ואל תניח שלא שקלנו משהו כשהצענו את ההמלצות שלנו אם הוא לא רשום כאן. ישנם גורמים רבים שנחשבים ונדונים כאשר אנו ממליצים על פרויקט, ותיעוד כל אחד מהם הוא עבודה בתהליך. + +
### דרישות מינימליות diff --git a/i18n/he/email-clients.md b/i18n/he/email-clients.md index 05939db4..2ec6e8ff 100644 --- a/i18n/he/email-clients.md +++ b/i18n/he/email-clients.md @@ -1,41 +1,49 @@ --- title: "לקוחות אימייל" icon: material/email-open -description: לקוחות אימייל אלה מכבדים פרטיות ותומכים בהצפנת אימייל OpenPGP. +description: These email clients are privacy-respecting and support OpenPGP email encryption. cover: email-clients.webp --- רשימת ההמלצות שלנו מכילה לקוחות אימייל התומכים הן ב[OpenPGP](encryption.md#openpgp) והן באימות חזק כגון [הרשאת פתוחה ](https://en.wikipedia.org/wiki/OAuth)(OAuth). OAuth מאפשר לך להשתמש ב - [אימות רב - גורמי](basics/multi-factor-authentication.md) ולמנוע גניבת חשבון. -??? warning "אימייל אינו מספק סודיות העברה" +
+Email does not provide forward secrecy - בעת שימוש בטכנולוגיית הצפנה מקצה לקצה (E2EE) כמו OpenPGP, לאימייל עדיין יהיו [כמה מטא נתונים](email.md#email-metadata-overview) שאינם מוצפנים בכותרת האימייל. - - OpenPGP גם לא תומך ב[סודיות העברה](https://en.wikipedia.org/wiki/Forward_secrecy), כלומר אם המפתח הפרטי שלך או של הנמען ייגנב אי פעם, כל ההודעות הקודמות שהוצפנו איתו ייחשפו: [ כיצד אוכל להגן על המפתחות הפרטיים שלי?](basics/email-security.md) שקול להשתמש באמצעי המספק סודיות קדימה: - - [תקשורת בזמן אמת](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## חוצה פלטפורמות ### Thunderbird -!!! recommendation +
- ![Thunderbird לוגו](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** הוא לקוח חינמי, קוד פתוח, חוצה פלטפורמות אימייל, קבוצת דיון, עדכון חדשות וצ'אט (XMPP, IRC, Twitter) שפותח על ידי קהילת Thunderbird, ולפני כן על ידי קרן Mozilla. - - [:octicons-home-16: דף הבית](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="מדינות פרטיות" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=תיעוד} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="קוד מקור" } - - ??? downloads "הורדות" - - - [:simple-windows11: ווינדוס](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: לינקוס](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird לוגו](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** הוא לקוח חינמי, קוד פתוח, חוצה פלטפורמות אימייל, קבוצת דיון, עדכון חדשות וצ'אט (XMPP, IRC, Twitter) שפותח על ידי קהילת Thunderbird, ולפני כן על ידי קרן Mozilla. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### תצורה מומלצת @@ -60,169 +68,217 @@ cover: email-clients.webp ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail לוגו](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** כלול ב-macOS וניתן להרחיב אותו כך שתהיה לו תמיכה ב-OpenPGP עם [GPG Suite](encryption.md#gpg-suite), אשר מוסיפה את היכולת לשלוח מייל מוצפן PGP. - - [:octicons-home-16: דף הבית](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="מדיניות פרטיות" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=תיעוד} +![Apple Mail לוגו](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** כלול ב-macOS וניתן להרחיב אותו כך שתהיה לו תמיכה ב-OpenPGP עם [GPG Suite](encryption.md#gpg-suite), אשר מוסיפה את היכולת לשלוח מייל מוצפן PGP. + +[:octicons-home-16: דף הבית](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="מדיניות פרטיות" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=תיעוד} + + + +
ל-Apple Mail יש את היכולת לטעון תוכן מרוחק ברקע או לחסום אותו לחלוטין ולהסתיר את כתובת ה-IP שלך משולחים ב-[macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) ו-[iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail לוגו](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** הוא לקוח אימייל בתשלום שנועד להפוך את ההצפנה מקצה לקצה לחלקה עם תכונות אבטחה כגון נעילת אפליקציה ביומטרית. - - [:octicons-home-16: דף הבית](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="מדיניות פרטיות" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=תיעוד} - - ??? downloads "הורדות" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail לוגו](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning "אזהרה" +**Canary Mail** הוא לקוח אימייל בתשלום שנועד להפוך את ההצפנה מקצה לקצה לחלקה עם תכונות אבטחה כגון נעילת אפליקציה ביומטרית. - Canary Mail הוציאה רק לאחרונה לקוח של Windows ואנדרואיד, אם כי אנחנו לא מאמינים שהם יציבים כמו עמיתיהם של iOS ו-Mac. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail הוציאה רק לאחרונה לקוח של Windows ואנדרואיד, אם כי אנחנו לא מאמינים שהם יציבים כמו עמיתיהם של iOS ו-Mac. + +
Canary Mail הוא קוד סגור. אנו ממליצים על זה בגלל האפשרויות המעטות שיש עבור לקוחות אימייל ב-iOS התומכים ב-PGP E2EE. ### FairEmail (אנדרואיד) -!!! recommendation +
- ![FairEmail לוגו](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** היא אפליקציית אימייל מינימלית בקוד פתוח, המשתמשת בסטנדרטים פתוחים (IMAP, SMTP, OpenPGP) עם צריכת נתונים וסוללה נמוכה. - - [:octicons-home-16: דף הבית](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="מדיניות פרטיות" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=תיעוד} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="קוד מקור" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=לתרומה } - - ??? downloads "הורדות" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail לוגו](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** היא אפליקציית אימייל מינימלית בקוד פתוח, המשתמשת בסטנדרטים פתוחים (IMAP, SMTP, OpenPGP) עם צריכת נתונים וסוללה נמוכה. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution לוגו](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** הוא יישום לניהול מידע אישי המספק פונקציונליות משולבת של דואר, לוחות שנה ופנקס כתובות. ל-Evolution יש [תיעוד](https://help.gnome.org/users/evolution/stable/) נרחב שיעזור לך להתחיל. - - [:octicons-home-16: דף הבית](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="מדיניות פרטיות" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=תיעוד} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="קוד מקור" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=לתרומה } - - ??? downloads "הורדות" - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution לוגו](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** הוא יישום לניהול מידע אישי המספק פונקציונליות משולבת של דואר, לוחות שנה ופנקס כתובות. ל-Evolution יש [תיעוד](https://help.gnome.org/users/evolution/stable/) נרחב שיעזור לך להתחיל. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K -9 Mail (אנדרואיד) -!!! recommendation +
- ![K-9 Mail לוגו](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** היא אפליקציית מייל עצמאית התומכת גם בתיבות דואר POP3 וגם IMAP, אך תומכת רק בדואר דואר עבור IMAP. - - בעתיד, K-9 Mail יהיה [המותג הרשמי](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) לקוח Thunderbird עבור אנדרואיד. - - [:octicons-home-16: דף הבית](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="מדיניות הפרטיות" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=תיעוד} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="קוד מקור" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=לתרומה } - - ??? downloads "הורדות" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail לוגו](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning "אזהרה" +**K-9 Mail** היא אפליקציית מייל עצמאית התומכת גם בתיבות דואר POP3 וגם IMAP, אך תומכת רק בדואר דואר עבור IMAP. - כשמשיבים למישהו ברשימת תפוצה, אפשרות ה"תשובה" עשויה לכלול גם את רשימת התפוצה. למידע נוסף ראה [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +בעתיד, K-9 Mail יהיה [המותג הרשמי](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) לקוח Thunderbird עבור אנדרואיד. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +כשמשיבים למישהו ברשימת תפוצה, אפשרות ה"תשובה" עשויה לכלול גם את רשימת התפוצה. למידע נוסף ראה [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact לוגו](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** הוא יישום מנהל מידע אישי (PIM) מפרויקט [KDE](https://kde.org). הוא מספק לקוח מייל, פנקס כתובות, מארגן ולקוח RSS. - - [:octicons-home-16: דף הבית](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="מדיניות פרטיות" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=תיעוד} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="קוד מקור" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=לתרומה } - - ??? downloads "הורדות" - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact לוגו](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** הוא יישום מנהל מידע אישי (PIM) מפרויקט [KDE](https://kde.org). הוא מספק לקוח מייל, פנקס כתובות, מארגן ולקוח RSS. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (דפדפן) -!!! recommendation +
- ![Mailvelope לוגו](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** היא תוסף דפדפן המאפשר החלפת מיילים מוצפנים בהתאם לתקן ההצפנה OpenPGP. - - [:octicons-home-16: דף הבית](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="מדיניות פרטיות" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=תיעוד} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="קוד מקור" } - - ??? downloads "הורדות" - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope לוגו](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** היא תוסף דפדפן המאפשר החלפת מיילים מוצפנים בהתאם לתקן ההצפנה OpenPGP. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt לוגו](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** הוא קורא דואר שורת פקודה בקוד פתוח (או MUA) עבור לינוקס ו-BSD. זה מזלג של [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) עם תכונות נוספות. - - NeoMutt הוא לקוח מבוסס טקסט שיש לו עקומת למידה תלולה. עם זאת, זה מאוד להתאמה אישית. - - [:octicons-home-16: דף הבית](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=תיעוד} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="קוד מקור" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=לתרומה } - - ??? downloads "הורדות" - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt לוגו](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** הוא קורא דואר שורת פקודה בקוד פתוח (או MUA) עבור לינוקס ו-BSD. זה מזלג של [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) עם תכונות נוספות. + +NeoMutt הוא לקוח מבוסס טקסט שיש לו עקומת למידה תלולה. עם זאת, זה מאוד להתאמה אישית. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## קריטריונים **שים לב שאיננו קשורים לאף אחד מהפרויקטים שאנו ממליצים עליהם.** בנוסף ל [הקריטריונים הסטנדרטיים שלנו](about/criteria.md), פיתחנו סט ברור של דרישות כדי לאפשר לנו לספק המלצות אובייקטיביות. אנו מציעים לך להכיר את הרשימה הזו לפני שתבחר להשתמש בפרויקט, ולערוך מחקר משלך כדי להבטיח שזו הבחירה הנכונה עבורך. -!!! example "חלק זה הוא חדש" +
+

This section is new

- אנו עובדים על קביעת קריטריונים מוגדרים לכל קטע באתר שלנו, והדבר עשוי להשתנות. אם יש לך שאלות כלשהן לגבי הקריטריונים שלנו, אנא [שאל בפורום שלנו](https://discuss.privacyguides.net/latest) ואל תניח שלא שקלנו משהו כשהצענו את ההמלצות שלנו אם הוא לא רשום כאן. ישנם גורמים רבים שנחשבים ונדונים כאשר אנו ממליצים על פרויקט, ותיעוד כל אחד מהם הוא עבודה בתהליך. +אנו עובדים על קביעת קריטריונים מוגדרים לכל קטע באתר שלנו, והדבר עשוי להשתנות. אם יש לך שאלות כלשהן לגבי הקריטריונים שלנו, אנא [שאל בפורום שלנו](https://discuss.privacyguides.net/latest) ואל תניח שלא שקלנו משהו כשהצענו את ההמלצות שלנו אם הוא לא רשום כאן. ישנם גורמים רבים שנחשבים ונדונים כאשר אנו ממליצים על פרויקט, ותיעוד כל אחד מהם הוא עבודה בתהליך. + +
### כישורים מינימליים diff --git a/i18n/he/financial-services.md b/i18n/he/financial-services.md index 95096312..d0cbe09b 100644 --- a/i18n/he/financial-services.md +++ b/i18n/he/financial-services.md @@ -12,37 +12,48 @@ cover: financial-services.webp ישנם מספר שירותים המספקים "כרטיסי חיוב וירטואליים" שבהם אתה יכול להשתמש עם סוחרים מקוונים מבלי לחשוף את פרטי הבנק או החיוב בפועל שלך ברוב המקרים. חשוב לציין ששירותים פיננסיים אלו הם **אינם** אנונימיים וכפופים לחוקי "הכר את הלקוח שלך" (KYC) ועשויים לדרוש את תעודת הזהות שלך או מידע מזהה אחר. שירותים אלה שימושיים בעיקר להגנה עליך מפני הפרות נתונים של סוחרים, מעקב פחות מתוחכם או מתאם רכישה על ידי סוכנויות שיווק וגניבת נתונים מקוונים; ו**לא** לביצוע רכישה באופן אנונימי לחלוטין. -!!! tip "בדוק את הבנק הנוכחי שלך" +
+

Check your current bank

- בנקים וספקי כרטיסי אשראי רבים מציעים פונקציונליות מקורית של כרטיסים וירטואליים. אם אתה משתמש באחד שכבר מספק את האפשרות הזו, עליך להשתמש בו על פני ההמלצות הבאות ברוב המקרים. כך אינך סומך על מספר צדדים עם המידע האישי שלך. +בנקים וספקי כרטיסי אשראי רבים מציעים פונקציונליות מקורית של כרטיסים וירטואליים. אם אתה משתמש באחד שכבר מספק את האפשרות הזו, עליך להשתמש בו על פני ההמלצות הבאות ברוב המקרים. כך אינך סומך על מספר צדדים עם המידע האישי שלך. + +
### Privacy.com (ארה"ב) -!!! recommendation +
- ![Privacy.com לוגו](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com לוגו](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - התוכנית החינמית של **Privacy.com** מאפשרת לך ליצור עד 12 כרטיסים וירטואליים בחודש, להגדיר מגבלות הוצאות על כרטיסים אלה ולכבות כרטיסים באופן מיידי. התוכנית בתשלום שלהם מאפשרת לך ליצור עד 36 כרטיסים בחודש, לקבל החזר של 1% מזומן על רכישות ולהסתיר מידע של העסקה מהבנק שלך. - - [:octicons-home-16: דף הבית](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="מדיניות פרטיות" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=תיעוד} +![Privacy.com לוגו](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com לוגו](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +התוכנית החינמית של **Privacy.com** מאפשרת לך ליצור עד 12 כרטיסים וירטואליים בחודש, להגדיר מגבלות הוצאות על כרטיסים אלה ולכבות כרטיסים באופן מיידי. התוכנית בתשלום שלהם מאפשרת לך ליצור עד 36 כרטיסים בחודש, לקבל החזר של 1% מזומן על רכישות ולהסתיר מידע של העסקה מהבנק שלך. + +[:octicons-home-16: דף הבית](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="מדיניות פרטיות" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=תיעוד} + + + +
Privacy.com מספק מידע על הסוחרים מהם אתה רוכש לבנק שלך כברירת מחדל. תכונת "סוחרים דיסקרטיים" בתשלום שלהם מסתירה מידע סוחר מהבנק שלך, כך שהבנק שלך רואה רק שבוצעה רכישה עם Privacy.com אבל לא איפה הכסף הזה הוצא, אבל זה לא חסין תקלות, וכמובן ש-Privacy.com עדיין יש ידע על הסוחרים שאיתם אתה מוציא כסף. ### MySudo (ארה"ב, בתשלום) -!!! recommendation +
- ![MySudo לוגו](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo לוגו](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** מספקת עד 9 כרטיסים וירטואליים בהתאם לתוכנית שתרכשו. התוכניות בתשלום שלהם כוללות בנוסף פונקציונליות שעשויה להיות שימושית לביצוע רכישות באופן פרטי, כגון מספרי טלפון וירטואליים וכתובות אימייל, אם כי בדרך כלל אנו ממליצים על [ספקי כינוי אימייל](email.md) אחרים לשימוש נרחב בכינויי אימייל. - - [:octicons-home-16: דף הבית](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="מדיניות פרטיות" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=תיעוד} +![MySudo לוגו](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo לוגו](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** מספקת עד 9 כרטיסים וירטואליים בהתאם לתוכנית שתרכשו. התוכניות בתשלום שלהם כוללות בנוסף פונקציונליות שעשויה להיות שימושית לביצוע רכישות באופן פרטי, כגון מספרי טלפון וירטואליים וכתובות אימייל, אם כי בדרך כלל אנו ממליצים על [ספקי כינוי אימייל](email.md) אחרים לשימוש נרחב בכינויי אימייל. + +[:octicons-home-16: דף הבית](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="מדיניות פרטיות" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=תיעוד} + + + +
הכרטיסים הווירטואליים של MySudo זמינים כרגע רק דרך אפליקציית iOS שלהם. @@ -50,9 +61,12 @@ Privacy.com מספק מידע על הסוחרים מהם אתה רוכש לבנ **שים לב שאיננו קשורים לאף אחד מהפרויקטים שאנו ממליצים עליהם.** בנוסף ל [הקריטריונים הסטנדרטיים שלנו](about/criteria.md), פיתחנו סט ברור של דרישות כדי לאפשר לנו לספק המלצות אובייקטיביות. אנו מציעים לך להכיר את הרשימה הזו לפני שתבחר להשתמש בפרויקט, ולערוך מחקר משלך כדי להבטיח שזו הבחירה הנכונה עבורך. -!!! example "חלק זה הוא חדש" +
+

This section is new

- אנו עובדים על קביעת קריטריונים מוגדרים לכל קטע באתר שלנו, והדבר עשוי להשתנות. אם יש לך שאלות כלשהן לגבי הקריטריונים שלנו, אנא [שאל בפורום שלנו](https://discuss.privacyguides.net/latest) ואל תניח שלא שקלנו משהו כשהצענו את ההמלצות שלנו אם הוא לא רשום כאן. ישנם גורמים רבים שנחשבים ונדונים כאשר אנו ממליצים על פרויקט, ותיעוד כל אחד מהם הוא עבודה בתהליך. +אנו עובדים על קביעת קריטריונים מוגדרים לכל קטע באתר שלנו, והדבר עשוי להשתנות. אם יש לך שאלות כלשהן לגבי הקריטריונים שלנו, אנא [שאל בפורום שלנו](https://discuss.privacyguides.net/latest) ואל תניח שלא שקלנו משהו כשהצענו את ההמלצות שלנו אם הוא לא רשום כאן. ישנם גורמים רבים שנחשבים ונדונים כאשר אנו ממליצים על פרויקט, ותיעוד כל אחד מהם הוא עבודה בתהליך. + +
- מאפשר יצירת כרטיסים מרובים שמתפקדים כמגן בין הסוחר לבין הכספים האישיים שלך. - אסור שהכרטיסים ידרשו ממך לספק פרטי כתובת מדויקת לחיוב למוכר. @@ -63,23 +77,30 @@ Privacy.com מספק מידע על הסוחרים מהם אתה רוכש לבנ ### CoinCards -!!! recommendation +
- ![CoinCards לוגו](assets/img/financial-services/coincards.svg){ align=right } - - ** CoinCards ** (זמין בארה"ב ובקנדה) מאפשר לך לרכוש כרטיסי מתנה למגוון גדול של סוחרים. - - [:octicons-home-16: דף הבית](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="מדיניות פרטיות" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=תיעוד} +![CoinCards לוגו](assets/img/financial-services/coincards.svg){ align=right } + +** CoinCards ** (זמין בארה"ב ובקנדה) מאפשר לך לרכוש כרטיסי מתנה למגוון גדול של סוחרים. + +[:octicons-home-16: דף הבית](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="מדיניות פרטיות" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=תיעוד} + + + +
### קריטריונים **שים לב שאיננו קשורים לאף אחד מהפרויקטים שאנו ממליצים עליהם.** בנוסף ל [הקריטריונים הסטנדרטיים שלנו](about/criteria.md), פיתחנו סט ברור של דרישות כדי לאפשר לנו לספק המלצות אובייקטיביות. אנו מציעים לך להכיר את הרשימה הזו לפני שתבחר להשתמש בפרויקט, ולערוך מחקר משלך כדי להבטיח שזו הבחירה הנכונה עבורך. -!!! example "חלק זה הוא חדש" +
+

This section is new

- אנו עובדים על קביעת קריטריונים מוגדרים לכל קטע באתר שלנו, והדבר עשוי להשתנות. אם יש לך שאלות כלשהן לגבי הקריטריונים שלנו, אנא [שאל בפורום שלנו](https://discuss.privacyguides.net/latest) ואל תניח שלא שקלנו משהו כשהצענו את ההמלצות שלנו אם הוא לא רשום כאן. ישנם גורמים רבים שנחשבים ונדונים כאשר אנו ממליצים על פרויקט, ותיעוד כל אחד מהם הוא עבודה בתהליך. +אנו עובדים על קביעת קריטריונים מוגדרים לכל קטע באתר שלנו, והדבר עשוי להשתנות. אם יש לך שאלות כלשהן לגבי הקריטריונים שלנו, אנא [שאל בפורום שלנו](https://discuss.privacyguides.net/latest) ואל תניח שלא שקלנו משהו כשהצענו את ההמלצות שלנו אם הוא לא רשום כאן. ישנם גורמים רבים שנחשבים ונדונים כאשר אנו ממליצים על פרויקט, ותיעוד כל אחד מהם הוא עבודה בתהליך. + +
- מקבל תשלום ב[מטבע קריפטוגרפי מומלץ](cryptocurrency.md). - אין צורך בתעודת זהות. diff --git a/i18n/he/router.md b/i18n/he/router.md index d11ef552..518335e4 100644 --- a/i18n/he/router.md +++ b/i18n/he/router.md @@ -1,7 +1,7 @@ --- title: "קושחת הנתב" icon: material/router-wireless -description: ניתן להשתמש במערכות הפעלה חלופיות אלה כדי לאבטח את הנתב או נקודת הגישה ל-Wi-Fi. +description: These alternative operating systems can be used to secure your router or Wi-Fi access point. cover: router.webp --- @@ -9,32 +9,40 @@ cover: router.webp ## OpenWrt -!!! recommendation +
- ![לוגו OpenWrt](assets/img/router/openwrt.svg#only-light){ align=right } - ![לוגו OpenWrt](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** היא מערכת הפעלה מבוססת לינוקס; הוא משמש בעיקר במכשירים משובצים לניתוב תעבורת רשת. זה כולל util-linux, uClibc ו-BusyBox. כל הרכיבים עברו אופטימיזציה עבור נתבים ביתיים. - - [:octicons-home-16: דף הבית](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=תיעוד} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="קוד מקור" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=לתרומה } +![לוגו OpenWrt](assets/img/router/openwrt.svg#only-light){ align=right } +![לוגו OpenWrt](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** היא מערכת הפעלה מבוססת לינוקס; הוא משמש בעיקר במכשירים משובצים לניתוב תעבורת רשת. זה כולל util-linux, uClibc ו-BusyBox. כל הרכיבים עברו אופטימיזציה עבור נתבים ביתיים. + +[:octicons-home-16: דף הבית](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=תיעוד} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="קוד מקור" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=לתרומה } + + + +
אתה יכול לעיין ב[טבלת החומרה](https://openwrt.org/toh/start) של OpenWrt כדי לבדוק אם המכשיר שלך נתמך. ## OPNsense -!!! recommendation +
- ![OPNsense לוגו](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** היא חומת אש ופלטפורמת ניתוב מבוססת קוד פתוח, מבוססת FreeBSD, המשלבת תכונות מתקדמות רבות כגון עיצוב תעבורה, איזון עומסים ויכולות VPN, עם תכונות רבות נוספות הזמינות בצורה של תוספים. OPNsense נפוץ כחומת אש היקפית, נתב, נקודת גישה אלחוטית, שרת DHCP, שרת DNS ונקודת קצה VPN. - - [:octicons-home-16: דף הבית](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=תיעוד} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="קוד מקור" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=לתרומה } +![OPNsense לוגו](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** היא חומת אש ופלטפורמת ניתוב מבוססת קוד פתוח, מבוססת FreeBSD, המשלבת תכונות מתקדמות רבות כגון עיצוב תעבורה, איזון עומסים ויכולות VPN, עם תכונות רבות נוספות הזמינות בצורה של תוספים. OPNsense נפוץ כחומת אש היקפית, נתב, נקודת גישה אלחוטית, שרת DHCP, שרת DNS ונקודת קצה VPN. + +[:octicons-home-16: דף הבית](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=תיעוד} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="קוד מקור" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=לתרומה } + + + +
OPNsense פותחה במקור כמזלג של [pfSense](https://en.wikipedia.org/wiki/PfSense), ושני הפרויקטים ידועים לפי הפצות חומת אש חינמיות ואמינות המציעות ציוד דומה נמצא רק בחומות אש מסחריות יקרות. הושק בשנת 2015, מפתחי OPNsense [ציטטו](https://docs.opnsense.org/history/thefork.html) מספר בעיות אבטחה ואיכות ב-pfSense שלדעתם היו נחוצות חלק מהפרויקט, כמו גם חששות לגבי רכישת הרוב של Netgate של pfSense והכיוון העתידי של פרויקט pfSense. @@ -42,9 +50,12 @@ OPNsense פותחה במקור כמזלג של [pfSense](https://en.wikipedia.or **שים לב שאיננו קשורים לאף אחד מהפרויקטים שאנו ממליצים עליהם.** בנוסף ל [הקריטריונים הסטנדרטיים שלנו](about/criteria.md), פיתחנו סט ברור של דרישות כדי לאפשר לנו לספק המלצות אובייקטיביות. אנו מציעים לך להכיר את הרשימה הזו לפני שתבחר להשתמש בפרויקט, ולערוך מחקר משלך כדי להבטיח שזו הבחירה הנכונה עבורך. -!!! example "חלק זה הוא חדש" +
+

This section is new

- אנו עובדים על קביעת קריטריונים מוגדרים לכל קטע באתר שלנו, והדבר עשוי להשתנות. אם יש לך שאלות כלשהן לגבי הקריטריונים שלנו, אנא [שאל בפורום שלנו](https://discuss.privacyguides.net/latest) ואל תניח שלא שקלנו משהו כשהצענו את ההמלצות שלנו אם הוא לא רשום כאן. ישנם גורמים רבים שנחשבים ונדונים כאשר אנו ממליצים על פרויקט, ותיעוד כל אחד מהם הוא עבודה בתהליך. +אנו עובדים על קביעת קריטריונים מוגדרים לכל קטע באתר שלנו, והדבר עשוי להשתנות. אם יש לך שאלות כלשהן לגבי הקריטריונים שלנו, אנא [שאל בפורום שלנו](https://discuss.privacyguides.net/latest) ואל תניח שלא שקלנו משהו כשהצענו את ההמלצות שלנו אם הוא לא רשום כאן. ישנם גורמים רבים שנחשבים ונדונים כאשר אנו ממליצים על פרויקט, ותיעוד כל אחד מהם הוא עבודה בתהליך. + +
- חייב להיות קוד פתוח. - חייב לקבל עדכונים שוטפים. diff --git a/i18n/hi/android.md b/i18n/hi/android.md index b2c2d3d0..6a650455 100644 --- a/i18n/hi/android.md +++ b/i18n/hi/android.md @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. +End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** is the best choice when it comes to privacy and security. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** is the best choice when it comes to privacy and security. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Operating Systems diff --git a/i18n/hi/calendar.md b/i18n/hi/calendar.md index 07671ab9..fd26697b 100644 --- a/i18n/hi/calendar.md +++ b/i18n/hi/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/hi/cloud.md b/i18n/hi/cloud.md index 9d15aa37..34b98b3d 100644 --- a/i18n/hi/cloud.md +++ b/i18n/hi/cloud.md @@ -10,29 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "Looking for Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Requirements diff --git a/i18n/hi/email-clients.md b/i18n/hi/email-clients.md index 4632b404..8ff4a1f0 100644 --- a/i18n/hi/email-clients.md +++ b/i18n/hi/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Recommended Configuration @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/hi/financial-services.md b/i18n/hi/financial-services.md index 6cedefcb..60641cd0 100644 --- a/i18n/hi/financial-services.md +++ b/i18n/hi/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/hi/router.md b/i18n/hi/router.md index 8b814e6e..870cd79e 100644 --- a/i18n/hi/router.md +++ b/i18n/hi/router.md @@ -9,32 +9,40 @@ Below are a few alternative operating systems, that can be used on routers, Wi-F ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } + + + +
You can consult OpenWrt's [table of hardware](https://openwrt.org/toh/start) to check if your device is supported. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } + + + +
OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.org/wiki/PfSense), and both projects are noted for being free and reliable firewall distributions which offer features often only found in expensive commercial firewalls. Launched in 2015, the developers of OPNsense [cited](https://docs.opnsense.org/history/thefork.html) a number of security and code-quality issues with pfSense which they felt necessitated a fork of the project, as well as concerns about Netgate's majority acquisition of pfSense and the future direction of the pfSense project. @@ -42,9 +50,12 @@ OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.or **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Must be open source. - Must receive regular updates. diff --git a/i18n/hu/android.md b/i18n/hu/android.md index c2069db7..64e2c9c5 100644 --- a/i18n/hu/android.md +++ b/i18n/hu/android.md @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. +End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** is the best choice when it comes to privacy and security. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** is the best choice when it comes to privacy and security. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Követelmények **Tartsd figyelemben, hogy nem állunk kapcsolatban az általunk ajánlott projektek egyikével sem.** Az [alap kritériumaink mellett](about/criteria.md), egyértelmű követelményrendszert dolgoztunk ki, hogy objektív ajánlásokat tudjunk tenni. Javasoljuk, hogy ismerkedj meg ezzel a listával, mielőtt kiválasztanál egy projektet, és végezz saját kutatásokat, hogy megbizonyosodj arról, hogy ez a megfelelő választás számodra. -!!! example "Ez a szakasz új" +
+

This section is new

- Azon dolgozunk, hogy meghatározott követelményeket állapítsunk meg az oldalunk minden egyes szakaszára vonatkozóan, és ez még változhat. Ha bármilyen kérdésed van a követelményinkkel kapcsolatban, kérjük, [kérdezz a fórumon](https://discuss.privacyguides.net/latest), és ne feltételezd, hogy valamit nem vettünk figyelembe az ajánlásaink elkészítésekor, ha az nem szerepel itt. Számos tényezőt veszünk figyelembe és vitatunk meg, amikor egy projektet ajánlunk, és minden egyes tényező dokumentálása folyamatban lévő munka. +Azon dolgozunk, hogy meghatározott követelményeket állapítsunk meg az oldalunk minden egyes szakaszára vonatkozóan, és ez még változhat. Ha bármilyen kérdésed van a követelményinkkel kapcsolatban, kérjük, [kérdezz a fórumon](https://discuss.privacyguides.net/latest), és ne feltételezd, hogy valamit nem vettünk figyelembe az ajánlásaink elkészítésekor, ha az nem szerepel itt. Számos tényezőt veszünk figyelembe és vitatunk meg, amikor egy projektet ajánlunk, és minden egyes tényező dokumentálása folyamatban lévő munka. + +
### Operációs Rendszerek diff --git a/i18n/hu/calendar.md b/i18n/hu/calendar.md index eb25e7fc..3c25173b 100644 --- a/i18n/hu/calendar.md +++ b/i18n/hu/calendar.md @@ -9,48 +9,58 @@ A naptárak a legérzékenyebb adataidat tartalmazzák; használj at rest End-to ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - A több naptár és kiterjesztett megosztási funkciók csak a fizetett előfizetőknek elérhető. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +A több naptár és kiterjesztett megosztási funkciók csak a fizetett előfizetőknek elérhető. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - A **Proton Calendar** egy titkosított naptárszolgáltatás, amely a Proton-tagok számára webes vagy mobilklienseken keresztül érhető el. A funkciók közé tartoznak: az összes adat automatikus End-to-End titkosítása, megosztási funkciók, import/export funkciók és még [sok más](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Kiterjesztett megosztási funkciók szintén csak a fizetett előfizetőknek elérhető. - - [:octicons-home-16: Honlap](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Adatvédelmi Tájékoztató" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Dokumentáció} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Forráskód" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +A **Proton Calendar** egy titkosított naptárszolgáltatás, amely a Proton-tagok számára webes vagy mobilklienseken keresztül érhető el. A funkciók közé tartoznak: az összes adat automatikus End-to-End titkosítása, megosztási funkciók, import/export funkciók és még [sok más](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Kiterjesztett megosztási funkciók szintén csak a fizetett előfizetőknek elérhető. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Tartsd figyelemben, hogy nem állunk kapcsolatban az általunk ajánlott projektek egyikével sem.** Az [alap kritériumaink mellett](about/criteria.md), egyértelmű követelményrendszert dolgoztunk ki, hogy objektív ajánlásokat tudjunk tenni. Javasoljuk, hogy ismerkedj meg ezzel a listával, mielőtt kiválasztanál egy projektet, és végezz saját kutatásokat, hogy megbizonyosodj arról, hogy ez a megfelelő választás számodra. -!!! example "Ez a szakasz új" +
+

This section is new

- Azon dolgozunk, hogy meghatározott követelményeket állapítsunk meg az oldalunk minden egyes szakaszára vonatkozóan, és ez még változhat. Ha bármilyen kérdésed van a követelményinkkel kapcsolatban, kérjük, [kérdezz a fórumon](https://discuss.privacyguides.net/latest), és ne feltételezd, hogy valamit nem vettünk figyelembe az ajánlásaink elkészítésekor, ha az nem szerepel itt. Számos tényezőt veszünk figyelembe és vitatunk meg, amikor egy projektet ajánlunk, és minden egyes tényező dokumentálása folyamatban lévő munka. +Azon dolgozunk, hogy meghatározott követelményeket állapítsunk meg az oldalunk minden egyes szakaszára vonatkozóan, és ez még változhat. Ha bármilyen kérdésed van a követelményinkkel kapcsolatban, kérjük, [kérdezz a fórumon](https://discuss.privacyguides.net/latest), és ne feltételezd, hogy valamit nem vettünk figyelembe az ajánlásaink elkészítésekor, ha az nem szerepel itt. Számos tényezőt veszünk figyelembe és vitatunk meg, amikor egy projektet ajánlunk, és minden egyes tényező dokumentálása folyamatban lévő munka. + +
### Alap minősítések diff --git a/i18n/hu/cloud.md b/i18n/hu/cloud.md index 30465fb9..e408b6f8 100644 --- a/i18n/hu/cloud.md +++ b/i18n/hu/cloud.md @@ -10,29 +10,37 @@ Sok felhőalapú tárhelyszolgáltatónak elvárása a teljes bizalmad abban, ho If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "A Nextcloud-ot keresed?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Tartsd figyelemben, hogy nem állunk kapcsolatban az általunk ajánlott projektek egyikével sem.** Az [alap kritériumaink mellett](about/criteria.md), egyértelmű követelményrendszert dolgoztunk ki, hogy objektív ajánlásokat tudjunk tenni. Javasoljuk, hogy ismerkedj meg ezzel a listával, mielőtt kiválasztanál egy projektet, és végezz saját kutatásokat, hogy megbizonyosodj arról, hogy ez a megfelelő választás számodra. -!!! example "Ez a szakasz új" +
+

This section is new

- Azon dolgozunk, hogy meghatározott követelményeket állapítsunk meg az oldalunk minden egyes szakaszára vonatkozóan, és ez még változhat. Ha bármilyen kérdésed van a követelményinkkel kapcsolatban, kérjük, [kérdezz a fórumon](https://discuss.privacyguides.net/latest), és ne feltételezd, hogy valamit nem vettünk figyelembe az ajánlásaink elkészítésekor, ha az nem szerepel itt. Számos tényezőt veszünk figyelembe és vitatunk meg, amikor egy projektet ajánlunk, és minden egyes tényező dokumentálása folyamatban lévő munka. +Azon dolgozunk, hogy meghatározott követelményeket állapítsunk meg az oldalunk minden egyes szakaszára vonatkozóan, és ez még változhat. Ha bármilyen kérdésed van a követelményinkkel kapcsolatban, kérjük, [kérdezz a fórumon](https://discuss.privacyguides.net/latest), és ne feltételezd, hogy valamit nem vettünk figyelembe az ajánlásaink elkészítésekor, ha az nem szerepel itt. Számos tényezőt veszünk figyelembe és vitatunk meg, amikor egy projektet ajánlunk, és minden egyes tényező dokumentálása folyamatban lévő munka. + +
### Alap elvárások diff --git a/i18n/hu/email-clients.md b/i18n/hu/email-clients.md index a9d911a3..ccbfce62 100644 --- a/i18n/hu/email-clients.md +++ b/i18n/hu/email-clients.md @@ -1,41 +1,49 @@ --- title: "Email kliensek" icon: material/email-open -description: Ezek az e-mail kliensek tiszteletben tartják a magánéletet és támogatják az OpenPGP email titkosítást. +description: These email clients are privacy-respecting and support OpenPGP email encryption. cover: email-clients.webp --- Ajánlási listánk olyan e-mail klienseket tartalmaz, amelyek támogatják mind az [OpenPGP](encryption.md#openpgp)-t és az erős hitelesítést, például az [Open Authorization-t (OAuth-ot)](https://en.wikipedia.org/wiki/OAuth). Az OAuth lehetővé teszi a [többlépcsős hitelesítés használatát](basics/multi-factor-authentication.md) és a fiók ellopásának megelőzését. -??? warning "Az email nem nem biztosít forward secrecy-t" +
+Email does not provide forward secrecy - Az OpenPGP-hez hasonló végponttól-végpontig terjedő titkosítási (E2E titkosítás) technológiák használata esetén az email még mindig tartalmaz [bizonyos metaadatokat](email.md#email-metaadatok-áttekintés), amelyek nincsenek titkosítva az email fejlécében. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Recommended Configuration @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Követelmények **Tartsd figyelemben, hogy nem állunk kapcsolatban az általunk ajánlott projektek egyikével sem.** Az [alap kritériumaink mellett](about/criteria.md), egyértelmű követelményrendszert dolgoztunk ki, hogy objektív ajánlásokat tudjunk tenni. Javasoljuk, hogy ismerkedj meg ezzel a listával, mielőtt kiválasztanál egy projektet, és végezz saját kutatásokat, hogy megbizonyosodj arról, hogy ez a megfelelő választás számodra. -!!! example "Ez a szakasz új" +
+

This section is new

- Azon dolgozunk, hogy meghatározott követelményeket állapítsunk meg az oldalunk minden egyes szakaszára vonatkozóan, és ez még változhat. Ha bármilyen kérdésed van a követelményinkkel kapcsolatban, kérjük, [kérdezz a fórumon](https://discuss.privacyguides.net/latest), és ne feltételezd, hogy valamit nem vettünk figyelembe az ajánlásaink elkészítésekor, ha az nem szerepel itt. Számos tényezőt veszünk figyelembe és vitatunk meg, amikor egy projektet ajánlunk, és minden egyes tényező dokumentálása folyamatban lévő munka. +Azon dolgozunk, hogy meghatározott követelményeket állapítsunk meg az oldalunk minden egyes szakaszára vonatkozóan, és ez még változhat. Ha bármilyen kérdésed van a követelményinkkel kapcsolatban, kérjük, [kérdezz a fórumon](https://discuss.privacyguides.net/latest), és ne feltételezd, hogy valamit nem vettünk figyelembe az ajánlásaink elkészítésekor, ha az nem szerepel itt. Számos tényezőt veszünk figyelembe és vitatunk meg, amikor egy projektet ajánlunk, és minden egyes tényező dokumentálása folyamatban lévő munka. + +
### Alap minősítések diff --git a/i18n/hu/financial-services.md b/i18n/hu/financial-services.md index 6d7c4dff..9e135841 100644 --- a/i18n/hu/financial-services.md +++ b/i18n/hu/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Tartsd figyelemben, hogy nem állunk kapcsolatban az általunk ajánlott projektek egyikével sem.** Az [alap kritériumaink mellett](about/criteria.md), egyértelmű követelményrendszert dolgoztunk ki, hogy objektív ajánlásokat tudjunk tenni. Javasoljuk, hogy ismerkedj meg ezzel a listával, mielőtt kiválasztanál egy projektet, és végezz saját kutatásokat, hogy megbizonyosodj arról, hogy ez a megfelelő választás számodra. -!!! example "Ez a szakasz új" +
+

This section is new

- Azon dolgozunk, hogy meghatározott követelményeket állapítsunk meg az oldalunk minden egyes szakaszára vonatkozóan, és ez még változhat. Ha bármilyen kérdésed van a követelményinkkel kapcsolatban, kérjük, [kérdezz a fórumon](https://discuss.privacyguides.net/latest), és ne feltételezd, hogy valamit nem vettünk figyelembe az ajánlásaink elkészítésekor, ha az nem szerepel itt. Számos tényezőt veszünk figyelembe és vitatunk meg, amikor egy projektet ajánlunk, és minden egyes tényező dokumentálása folyamatban lévő munka. +Azon dolgozunk, hogy meghatározott követelményeket állapítsunk meg az oldalunk minden egyes szakaszára vonatkozóan, és ez még változhat. Ha bármilyen kérdésed van a követelményinkkel kapcsolatban, kérjük, [kérdezz a fórumon](https://discuss.privacyguides.net/latest), és ne feltételezd, hogy valamit nem vettünk figyelembe az ajánlásaink elkészítésekor, ha az nem szerepel itt. Számos tényezőt veszünk figyelembe és vitatunk meg, amikor egy projektet ajánlunk, és minden egyes tényező dokumentálása folyamatban lévő munka. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Követelmények **Tartsd figyelemben, hogy nem állunk kapcsolatban az általunk ajánlott projektek egyikével sem.** Az [alap kritériumaink mellett](about/criteria.md), egyértelmű követelményrendszert dolgoztunk ki, hogy objektív ajánlásokat tudjunk tenni. Javasoljuk, hogy ismerkedj meg ezzel a listával, mielőtt kiválasztanál egy projektet, és végezz saját kutatásokat, hogy megbizonyosodj arról, hogy ez a megfelelő választás számodra. -!!! example "Ez a szakasz új" +
+

This section is new

- Azon dolgozunk, hogy meghatározott követelményeket állapítsunk meg az oldalunk minden egyes szakaszára vonatkozóan, és ez még változhat. Ha bármilyen kérdésed van a követelményinkkel kapcsolatban, kérjük, [kérdezz a fórumon](https://discuss.privacyguides.net/latest), és ne feltételezd, hogy valamit nem vettünk figyelembe az ajánlásaink elkészítésekor, ha az nem szerepel itt. Számos tényezőt veszünk figyelembe és vitatunk meg, amikor egy projektet ajánlunk, és minden egyes tényező dokumentálása folyamatban lévő munka. +Azon dolgozunk, hogy meghatározott követelményeket állapítsunk meg az oldalunk minden egyes szakaszára vonatkozóan, és ez még változhat. Ha bármilyen kérdésed van a követelményinkkel kapcsolatban, kérjük, [kérdezz a fórumon](https://discuss.privacyguides.net/latest), és ne feltételezd, hogy valamit nem vettünk figyelembe az ajánlásaink elkészítésekor, ha az nem szerepel itt. Számos tényezőt veszünk figyelembe és vitatunk meg, amikor egy projektet ajánlunk, és minden egyes tényező dokumentálása folyamatban lévő munka. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/hu/router.md b/i18n/hu/router.md index be98f2aa..9c4d8768 100644 --- a/i18n/hu/router.md +++ b/i18n/hu/router.md @@ -9,29 +9,37 @@ Lejjebb bemutatunk néhány alternatív operációs rendszert, amelyek használh ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - Az **OpenWrt** egy Linux alapú operációs rendszer; elsősorban beágyazott eszközökön használatos, hálózati forgalom irányítására. Tartalmazza az util-linux, uClibc és BusyBox programokat. Az összes komponens otthoni routerekhez lett optimalizálva. - - [:octicons-home-16: Honlap](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Dokumentáció} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Forráskód" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Közreműködés } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +Az **OpenWrt** egy Linux alapú operációs rendszer; elsősorban beágyazott eszközökön használatos, hálózati forgalom irányítására. Tartalmazza az util-linux, uClibc és BusyBox programokat. Az összes komponens otthoni routerekhez lett optimalizálva. + +[:octicons-home-16: Honlap](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Dokumentáció} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Forráskód" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Közreműködés } + + + +
Az OpenWrt [hardvertáblázatában](https://openwrt.org/toh/start) ellenőrizheted, hogy az eszközöd támogatott-e. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. Az OPNsense-t általában peremtűzfalként, routerként, vezeték nélküli hozzáférési pontként, DHCP-szerverként, DNS-szerverként és VPN végpontként vetik be. - - A pfSense-t általában perem tűzfalként, routerként, vezeték nélküli hozzáférési pontként, DHCP szerverként, DNS szerverként és VPN végpontként telepítik. +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. Az OPNsense-t általában peremtűzfalként, routerként, vezeték nélküli hozzáférési pontként, DHCP-szerverként, DNS-szerverként és VPN végpontként vetik be. + +A pfSense-t általában perem tűzfalként, routerként, vezeték nélküli hozzáférési pontként, DHCP szerverként, DNS szerverként és VPN végpontként telepítik. + + + +
Az OPNsense eredetileg a [pfSense](https://en.wikipedia.org/wiki/PfSense) forkjaként lett kifejlesztve, és mindkét projekt arról ismert, hogy ingyenes és megbízható tűzfal disztribúciók, amelyek gyakran csak drága kereskedelmi tűzfalakban található funkciókat kínálnak. A 2015-ben indított OPNsense fejlesztői számos biztonsági és kódminőségi problémára, a Netgate általi többségi pfSense felvásárlásra, valamint a pfSense projekt jövőbeli irányára [hivatkozva](https://docs.opnsense.org/history/thefork.html) a pfSense-el kapcsolatban úgy érezték, hogy ezek miatt az aggályok miatt szükségessé vált egy projekt fork létrehozása. @@ -39,9 +47,12 @@ Az OPNsense eredetileg a [pfSense](https://en.wikipedia.org/wiki/PfSense) forkja **Tartsd figyelemben, hogy nem állunk kapcsolatban az általunk ajánlott projektek egyikével sem.** Az [alap kritériumaink mellett](about/criteria.md), egyértelmű követelményrendszert dolgoztunk ki, hogy objektív ajánlásokat tudjunk tenni. Javasoljuk, hogy ismerkedj meg ezzel a listával, mielőtt kiválasztanál egy projektet, és végezz saját kutatásokat, hogy megbizonyosodj arról, hogy ez a megfelelő választás számodra. -!!! example "Ez a szakasz új" +
+

This section is new

- Azon dolgozunk, hogy meghatározott követelményeket állapítsunk meg az oldalunk minden egyes szakaszára vonatkozóan, és ez még változhat. Ha bármilyen kérdésed van a követelményinkkel kapcsolatban, kérjük, [kérdezz a fórumon](https://discuss.privacyguides.net/latest), és ne feltételezd, hogy valamit nem vettünk figyelembe az ajánlásaink elkészítésekor, ha az nem szerepel itt. Számos tényezőt veszünk figyelembe és vitatunk meg, amikor egy projektet ajánlunk, és minden egyes tényező dokumentálása folyamatban lévő munka. +Azon dolgozunk, hogy meghatározott követelményeket állapítsunk meg az oldalunk minden egyes szakaszára vonatkozóan, és ez még változhat. Ha bármilyen kérdésed van a követelményinkkel kapcsolatban, kérjük, [kérdezz a fórumon](https://discuss.privacyguides.net/latest), és ne feltételezd, hogy valamit nem vettünk figyelembe az ajánlásaink elkészítésekor, ha az nem szerepel itt. Számos tényezőt veszünk figyelembe és vitatunk meg, amikor egy projektet ajánlunk, és minden egyes tényező dokumentálása folyamatban lévő munka. + +
- Nyílt forráskódúnak kell lennie. - Rendszeres frissítéseket kell kapnia. diff --git a/i18n/id/android.md b/i18n/id/android.md index 2c71c8d6..8049b580 100644 --- a/i18n/id/android.md +++ b/i18n/id/android.md @@ -1,14 +1,14 @@ --- -meta_title: "Rekomendasi Android: GrapheneOS dan DivestOS - Privacy Guides" +meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" title: "Android" icon: 'simple/android' -description: Anda dapat mengganti sistem operasi pada ponsel Android Anda dengan alternatif berikut ini yang aman dan menghargai privasi. +description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: - "@context": http://schema.org "@type": WebPage - name: Sistem Operasi Android Pribadi + name: Private Android Operating Systems url: "./" - "@context": http://schema.org @@ -16,7 +16,7 @@ schema: name: Android image: /assets/img/android/android.svg url: https://source.android.com/ - sameAs: https://id.wikipedia.org/wiki/Android_(sistem_operasi) + sameAs: https://en.wikipedia.org/wiki/Android_(operating_system) - "@context": http://schema.org "@type": CreativeWork @@ -47,7 +47,7 @@ schema: "@type": Brand name: Google image: /assets/img/android/google-pixel.png - sameAs: https://id.wikipedia.org/wiki/Google_Pixel + sameAs: https://en.wikipedia.org/wiki/Google_Pixel review: "@type": Review author: @@ -95,26 +95,31 @@ Berikut ini adalah sistem operasi, perangkat, dan aplikasi Android yang kami rek Kami menyarankan untuk menginstal salah satu sistem operasi Android khusus berikut ini pada perangkat Anda, yang terdaftar dalam urutan preferensi, tergantung kompatibilitas perangkat Anda dengan sistem operasi berikut ini. -!!! catatan +
+

Note

- Perangkat yang sudah habis masa pakainya (seperti perangkat "dukungan diperpanjang" GrapheneOS atau CalyxOS) tidak memiliki tambalan keamanan penuh (pembaruan firmware) karena OEM menghentikan dukungannya. Perangkat ini tidak dapat dianggap sepenuhnya aman terlepas dari perangkat lunak yang terinstal. +Perangkat yang sudah habis masa pakainya (seperti perangkat "dukungan diperpanjang" GrapheneOS atau CalyxOS) tidak memiliki tambalan keamanan penuh (pembaruan firmware) karena OEM menghentikan dukungannya. Perangkat ini tidak dapat dianggap sepenuhnya aman terlepas dari perangkat lunak yang terinstal. + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** adalah pilihan terbaik dalam hal privasi dan keamanan. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Beranda](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Kebijakan Privasi" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Dokumentasi} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Kode Sumber" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Kontribusi } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** adalah pilihan terbaik dalam hal privasi dan keamanan. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Beranda](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Kebijakan Privasi" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Dokumentasi} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Kode Sumber" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Kontribusi } + +
GrapheneOS mendukung [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), yang menjalankan [Layanan Google Play](https://en.wikipedia.org/wiki/Google_Play_Services) sepenuhnya di-sandbox seperti aplikasi biasa lainnya. Ini berarti Anda dapat memanfaatkan sebagian besar Layanan Google Play, seperti [notifikasi push](https://firebase.google.com/docs/cloud-messaging/), sekaligus memberi Anda kontrol penuh atas izin dan aksesnya, dan sambil memasukkannya ke [profil kerja](os/android-overview.md#work-profile) tertentu atau [profil pengguna](os/android-overview.md#user-profiles) pilihan Anda. @@ -124,19 +129,21 @@ Ponsel Google Pixel adalah satu-satunya perangkat yang saat ini memenuhi persyar ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** adalah fork lunak dari [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Beranda](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Layanan Onion" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Kebijakan Privasi" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Dokumentasi} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Kode Sumber" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Kontribusi } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** adalah fork lunak dari [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Beranda](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Layanan Onion" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Kebijakan Privasi" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Dokumentasi} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Kode Sumber" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Kontribusi } + +
DivestOS memiliki mekanisme [penambalan](https://gitlab.com/divested-mobile/cve_checker) kerentanan kernel ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) otomatis, lebih sedikit *proprietary blobs*, dan berkas [hosts](https://divested.dev/index.php?page=dnsbl) khusus. WebView-nya yang telah diperkuat, [Mulch](https://gitlab.com/divested-mobile/mulch), mengaktifkan [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) untuk semua arsitektur dan [partisi status jaringan](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), dan menerima pembaruan luar *band*. DivestOS juga menyertakan tambalan kernel dari GrapheneOS dan mengaktifkan semua fitur keamanan kernel yang tersedia melalui [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). Semua kernel yang lebih baru dari versi 3.4 menyertakan [sanitasi](https://lwn.net/Articles/334747/) halaman penuh dan semua kernel yang dikompilasi oleh ~22 Clang memiliki [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) yang diaktifkan. @@ -144,11 +151,14 @@ DivestOS mengimplementasikan beberapa tambalan penguatan sistem yang awalnya dik DivestOS menggunakan F-Droid sebagai toko aplikasi bawaan. Kami biasanya [menyarankan untuk menghindari F-Droid](#f-droid), tetapi melakukan hal itu di DivestOS tidak memungkinkan; para pengembang DivestOS memperbarui aplikasi mereka melalui repositori F-Droid mereka sendiri ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) dan [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). Kami menyarankan untuk menonaktifkan aplikasi resmi F-Droid dan menggunakan [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **serta mengaktifkan repositori DivestOS** agar komponen-komponen tersebut selalu diperbarui. Untuk aplikasi-aplikasi lain, kami tetap menyarankan metode yang kami rekomendasikan. -!!! peringatan +
+

Warning

- Pembaruan firmware [status] (https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) dan kontrol kualitas perangkat-perangkat yang didukung DivestOS bervariasi. Kami tetap merekomendasikan GrapheneOS tergantung kompatibilitas perangkat Anda. Untuk perangkat lain, DivestOS adalah alternatif yang bagus. - - Not all of the supported devices have verified boot, and some perform it better than others. +Pembaruan firmware [status] (https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) dan kontrol kualitas perangkat-perangkat yang didukung DivestOS bervariasi. Kami tetap merekomendasikan GrapheneOS tergantung kompatibilitas perangkat Anda. Untuk perangkat lain, DivestOS adalah alternatif yang bagus. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Mulai **Pixel 8** dan **8 Pro**, perangkat Pixel menerima minimal 7 tahun pembaruan keamanan terjamin, memastikan masa pakai yang jauh lebih lama dibandingkan dengan 2-5 tahun yang biasanya ditawarkan oleh OEM pesaing. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Mulai **Pixel 8** dan **8 Pro**, perangkat Pixel menerima minimal 7 tahun pembaruan keamanan terjamin, memastikan masa pakai yang jauh lebih lama dibandingkan dengan 2-5 tahun yang biasanya ditawarkan oleh OEM pesaing. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! peringatan +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Kriteria **Harap diperhatikan bahwa kami tidak berafiliasi dengan proyek-proyek yang kami rekomendasikan.** Selain [kriteria standar kami](about/criteria.md), kami telah mengembangkan serangkaian persyaratan yang jelas untuk memungkinkan kami memberikan rekomendasi yang objektif. Kami sarankan Anda membiasakan diri dengan daftar ini sebelum memilih untuk menggunakan sebuah proyek, dan melakukan penelitian sendiri untuk memastikan bahwa itu adalah pilihan yang tepat untuk Anda. -!!! contoh "Bagian ini baru" +
+

This section is new

- Kami sedang berupaya menetapkan kriteria yang jelas untuk setiap bagian dari situs kami, dan hal ini dapat berubah sewaktu-waktu. Jika Anda memiliki pertanyaan mengenai kriteria kami, silakan [tanyakan di forum](https://discuss.privacyguides.net/latest) dan jangan berasumsi bahwa kami tidak mempertimbangkan sesuatu saat membuat rekomendasi jika tidak tercantum di sini. Ada banyak faktor yang dipertimbangkan dan didiskusikan saat kami merekomendasikan sebuah proyek, dan mendokumentasikan setiap faktor tersebut merupakan sebuah pekerjaan yang sedang berjalan. +Kami sedang berupaya menetapkan kriteria yang jelas untuk setiap bagian dari situs kami, dan hal ini dapat berubah sewaktu-waktu. Jika Anda memiliki pertanyaan mengenai kriteria kami, silakan [tanyakan di forum](https://discuss.privacyguides.net/latest) dan jangan berasumsi bahwa kami tidak mempertimbangkan sesuatu saat membuat rekomendasi jika tidak tercantum di sini. Ada banyak faktor yang dipertimbangkan dan didiskusikan saat kami merekomendasikan sebuah proyek, dan mendokumentasikan setiap faktor tersebut merupakan sebuah pekerjaan yang sedang berjalan. + +
### Sistem Operasi diff --git a/i18n/id/calendar.md b/i18n/id/calendar.md index 5bec6095..c9c1d83f 100644 --- a/i18n/id/calendar.md +++ b/i18n/id/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Harap diperhatikan bahwa kami tidak berafiliasi dengan proyek-proyek yang kami rekomendasikan.** Selain [kriteria standar kami](about/criteria.md), kami telah mengembangkan serangkaian persyaratan yang jelas untuk memungkinkan kami memberikan rekomendasi yang objektif. Kami sarankan Anda membiasakan diri dengan daftar ini sebelum memilih untuk menggunakan sebuah proyek, dan melakukan penelitian sendiri untuk memastikan bahwa itu adalah pilihan yang tepat untuk Anda. -!!! contoh "Bagian ini baru" +
+

This section is new

- Kami sedang berupaya menetapkan kriteria yang jelas untuk setiap bagian dari situs kami, dan hal ini dapat berubah sewaktu-waktu. Jika Anda memiliki pertanyaan mengenai kriteria kami, silakan [tanyakan di forum](https://discuss.privacyguides.net/latest) dan jangan berasumsi bahwa kami tidak mempertimbangkan sesuatu saat membuat rekomendasi jika tidak tercantum di sini. Ada banyak faktor yang dipertimbangkan dan didiskusikan saat kami merekomendasikan sebuah proyek, dan mendokumentasikan setiap faktor tersebut merupakan sebuah pekerjaan yang sedang berjalan. +Kami sedang berupaya menetapkan kriteria yang jelas untuk setiap bagian dari situs kami, dan hal ini dapat berubah sewaktu-waktu. Jika Anda memiliki pertanyaan mengenai kriteria kami, silakan [tanyakan di forum](https://discuss.privacyguides.net/latest) dan jangan berasumsi bahwa kami tidak mempertimbangkan sesuatu saat membuat rekomendasi jika tidak tercantum di sini. Ada banyak faktor yang dipertimbangkan dan didiskusikan saat kami merekomendasikan sebuah proyek, dan mendokumentasikan setiap faktor tersebut merupakan sebuah pekerjaan yang sedang berjalan. + +
### Minimum Qualifications diff --git a/i18n/id/cloud.md b/i18n/id/cloud.md index 7cbbd739..794f7b78 100644 --- a/i18n/id/cloud.md +++ b/i18n/id/cloud.md @@ -10,29 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "Looking for Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Harap diperhatikan bahwa kami tidak berafiliasi dengan proyek-proyek yang kami rekomendasikan.** Selain [kriteria standar kami](about/criteria.md), kami telah mengembangkan serangkaian persyaratan yang jelas untuk memungkinkan kami memberikan rekomendasi yang objektif. Kami sarankan Anda membiasakan diri dengan daftar ini sebelum memilih untuk menggunakan sebuah proyek, dan melakukan penelitian sendiri untuk memastikan bahwa itu adalah pilihan yang tepat untuk Anda. -!!! contoh "Bagian ini baru" +
+

This section is new

- Kami sedang berupaya menetapkan kriteria yang jelas untuk setiap bagian dari situs kami, dan hal ini dapat berubah sewaktu-waktu. Jika Anda memiliki pertanyaan mengenai kriteria kami, silakan [tanyakan di forum](https://discuss.privacyguides.net/latest) dan jangan berasumsi bahwa kami tidak mempertimbangkan sesuatu saat membuat rekomendasi jika tidak tercantum di sini. Ada banyak faktor yang dipertimbangkan dan didiskusikan saat kami merekomendasikan sebuah proyek, dan mendokumentasikan setiap faktor tersebut merupakan sebuah pekerjaan yang sedang berjalan. +Kami sedang berupaya menetapkan kriteria yang jelas untuk setiap bagian dari situs kami, dan hal ini dapat berubah sewaktu-waktu. Jika Anda memiliki pertanyaan mengenai kriteria kami, silakan [tanyakan di forum](https://discuss.privacyguides.net/latest) dan jangan berasumsi bahwa kami tidak mempertimbangkan sesuatu saat membuat rekomendasi jika tidak tercantum di sini. Ada banyak faktor yang dipertimbangkan dan didiskusikan saat kami merekomendasikan sebuah proyek, dan mendokumentasikan setiap faktor tersebut merupakan sebuah pekerjaan yang sedang berjalan. + +
### Persyaratan Minimum diff --git a/i18n/id/email-clients.md b/i18n/id/email-clients.md index 1ec1899b..bf961408 100644 --- a/i18n/id/email-clients.md +++ b/i18n/id/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Konfigurasi yang Disarankan @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! peringatan +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! peringatan +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Kriteria **Harap diperhatikan bahwa kami tidak berafiliasi dengan proyek-proyek yang kami rekomendasikan.** Selain [kriteria standar kami](about/criteria.md), kami telah mengembangkan serangkaian persyaratan yang jelas untuk memungkinkan kami memberikan rekomendasi yang objektif. Kami sarankan Anda membiasakan diri dengan daftar ini sebelum memilih untuk menggunakan sebuah proyek, dan melakukan penelitian sendiri untuk memastikan bahwa itu adalah pilihan yang tepat untuk Anda. -!!! contoh "Bagian ini baru" +
+

This section is new

- Kami sedang berupaya menetapkan kriteria yang jelas untuk setiap bagian dari situs kami, dan hal ini dapat berubah sewaktu-waktu. Jika Anda memiliki pertanyaan mengenai kriteria kami, silakan [tanyakan di forum](https://discuss.privacyguides.net/latest) dan jangan berasumsi bahwa kami tidak mempertimbangkan sesuatu saat membuat rekomendasi jika tidak tercantum di sini. Ada banyak faktor yang dipertimbangkan dan didiskusikan saat kami merekomendasikan sebuah proyek, dan mendokumentasikan setiap faktor tersebut merupakan sebuah pekerjaan yang sedang berjalan. +Kami sedang berupaya menetapkan kriteria yang jelas untuk setiap bagian dari situs kami, dan hal ini dapat berubah sewaktu-waktu. Jika Anda memiliki pertanyaan mengenai kriteria kami, silakan [tanyakan di forum](https://discuss.privacyguides.net/latest) dan jangan berasumsi bahwa kami tidak mempertimbangkan sesuatu saat membuat rekomendasi jika tidak tercantum di sini. Ada banyak faktor yang dipertimbangkan dan didiskusikan saat kami merekomendasikan sebuah proyek, dan mendokumentasikan setiap faktor tersebut merupakan sebuah pekerjaan yang sedang berjalan. + +
### Minimum Qualifications diff --git a/i18n/id/financial-services.md b/i18n/id/financial-services.md index 4e0e5bad..9a42a652 100644 --- a/i18n/id/financial-services.md +++ b/i18n/id/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Harap diperhatikan bahwa kami tidak berafiliasi dengan proyek-proyek yang kami rekomendasikan.** Selain [kriteria standar kami](about/criteria.md), kami telah mengembangkan serangkaian persyaratan yang jelas untuk memungkinkan kami memberikan rekomendasi yang objektif. Kami sarankan Anda membiasakan diri dengan daftar ini sebelum memilih untuk menggunakan sebuah proyek, dan melakukan penelitian sendiri untuk memastikan bahwa itu adalah pilihan yang tepat untuk Anda. -!!! contoh "Bagian ini baru" +
+

This section is new

- Kami sedang berupaya menetapkan kriteria yang jelas untuk setiap bagian dari situs kami, dan hal ini dapat berubah sewaktu-waktu. Jika Anda memiliki pertanyaan mengenai kriteria kami, silakan [tanyakan di forum](https://discuss.privacyguides.net/latest) dan jangan berasumsi bahwa kami tidak mempertimbangkan sesuatu saat membuat rekomendasi jika tidak tercantum di sini. Ada banyak faktor yang dipertimbangkan dan didiskusikan saat kami merekomendasikan sebuah proyek, dan mendokumentasikan setiap faktor tersebut merupakan sebuah pekerjaan yang sedang berjalan. +Kami sedang berupaya menetapkan kriteria yang jelas untuk setiap bagian dari situs kami, dan hal ini dapat berubah sewaktu-waktu. Jika Anda memiliki pertanyaan mengenai kriteria kami, silakan [tanyakan di forum](https://discuss.privacyguides.net/latest) dan jangan berasumsi bahwa kami tidak mempertimbangkan sesuatu saat membuat rekomendasi jika tidak tercantum di sini. Ada banyak faktor yang dipertimbangkan dan didiskusikan saat kami merekomendasikan sebuah proyek, dan mendokumentasikan setiap faktor tersebut merupakan sebuah pekerjaan yang sedang berjalan. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Kriteria **Harap diperhatikan bahwa kami tidak berafiliasi dengan proyek-proyek yang kami rekomendasikan.** Selain [kriteria standar kami](about/criteria.md), kami telah mengembangkan serangkaian persyaratan yang jelas untuk memungkinkan kami memberikan rekomendasi yang objektif. Kami sarankan Anda membiasakan diri dengan daftar ini sebelum memilih untuk menggunakan sebuah proyek, dan melakukan penelitian sendiri untuk memastikan bahwa itu adalah pilihan yang tepat untuk Anda. -!!! contoh "Bagian ini baru" +
+

This section is new

- Kami sedang berupaya menetapkan kriteria yang jelas untuk setiap bagian dari situs kami, dan hal ini dapat berubah sewaktu-waktu. Jika Anda memiliki pertanyaan mengenai kriteria kami, silakan [tanyakan di forum](https://discuss.privacyguides.net/latest) dan jangan berasumsi bahwa kami tidak mempertimbangkan sesuatu saat membuat rekomendasi jika tidak tercantum di sini. Ada banyak faktor yang dipertimbangkan dan didiskusikan saat kami merekomendasikan sebuah proyek, dan mendokumentasikan setiap faktor tersebut merupakan sebuah pekerjaan yang sedang berjalan. +Kami sedang berupaya menetapkan kriteria yang jelas untuk setiap bagian dari situs kami, dan hal ini dapat berubah sewaktu-waktu. Jika Anda memiliki pertanyaan mengenai kriteria kami, silakan [tanyakan di forum](https://discuss.privacyguides.net/latest) dan jangan berasumsi bahwa kami tidak mempertimbangkan sesuatu saat membuat rekomendasi jika tidak tercantum di sini. Ada banyak faktor yang dipertimbangkan dan didiskusikan saat kami merekomendasikan sebuah proyek, dan mendokumentasikan setiap faktor tersebut merupakan sebuah pekerjaan yang sedang berjalan. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/id/router.md b/i18n/id/router.md index 0c11cbc8..5d62defa 100644 --- a/i18n/id/router.md +++ b/i18n/id/router.md @@ -9,32 +9,40 @@ Below are a few alternative operating systems, that can be used on routers, Wi-F ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } + + + +
You can consult OpenWrt's [table of hardware](https://openwrt.org/toh/start) to check if your device is supported. ## OPNsense -!!! recommendation +
- ![OPNsense Logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** adalah platform tembok api dan perutean berbasis FreeBSD yang bersumber terbuka, yang menggabungkan banyak fitur canggih seperti pembentukan lalu lintas internet, penyeimbangan beban, dan kemampuan VPN, dengan banyak fitur lain yang tersedia dalam bentuk plugin. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } +![OPNsense Logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** adalah platform tembok api dan perutean berbasis FreeBSD yang bersumber terbuka, yang menggabungkan banyak fitur canggih seperti pembentukan lalu lintas internet, penyeimbangan beban, dan kemampuan VPN, dengan banyak fitur lain yang tersedia dalam bentuk plugin. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } + + + +
OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.org/wiki/PfSense), and both projects are noted for being free and reliable firewall distributions which offer features often only found in expensive commercial firewalls. Launched in 2015, the developers of OPNsense [cited](https://docs.opnsense.org/history/thefork.html) a number of security and code-quality issues with pfSense which they felt necessitated a fork of the project, as well as concerns about Netgate's majority acquisition of pfSense and the future direction of the pfSense project. @@ -42,9 +50,12 @@ OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.or **Harap diperhatikan bahwa kami tidak berafiliasi dengan proyek-proyek yang kami rekomendasikan.** Selain [kriteria standar kami](about/criteria.md), kami telah mengembangkan serangkaian persyaratan yang jelas untuk memungkinkan kami memberikan rekomendasi yang objektif. Kami sarankan Anda membiasakan diri dengan daftar ini sebelum memilih untuk menggunakan sebuah proyek, dan melakukan penelitian sendiri untuk memastikan bahwa itu adalah pilihan yang tepat untuk Anda. -!!! contoh "Bagian ini baru" +
+

This section is new

- Kami sedang berupaya menetapkan kriteria yang jelas untuk setiap bagian dari situs kami, dan hal ini dapat berubah sewaktu-waktu. Jika Anda memiliki pertanyaan mengenai kriteria kami, silakan [tanyakan di forum](https://discuss.privacyguides.net/latest) dan jangan berasumsi bahwa kami tidak mempertimbangkan sesuatu saat membuat rekomendasi jika tidak tercantum di sini. Ada banyak faktor yang dipertimbangkan dan didiskusikan saat kami merekomendasikan sebuah proyek, dan mendokumentasikan setiap faktor tersebut merupakan sebuah pekerjaan yang sedang berjalan. +Kami sedang berupaya menetapkan kriteria yang jelas untuk setiap bagian dari situs kami, dan hal ini dapat berubah sewaktu-waktu. Jika Anda memiliki pertanyaan mengenai kriteria kami, silakan [tanyakan di forum](https://discuss.privacyguides.net/latest) dan jangan berasumsi bahwa kami tidak mempertimbangkan sesuatu saat membuat rekomendasi jika tidak tercantum di sini. Ada banyak faktor yang dipertimbangkan dan didiskusikan saat kami merekomendasikan sebuah proyek, dan mendokumentasikan setiap faktor tersebut merupakan sebuah pekerjaan yang sedang berjalan. + +
- Must be open source. - Must receive regular updates. diff --git a/i18n/it/android.md b/i18n/it/android.md index 60b7b837..8dbcb036 100644 --- a/i18n/it/android.md +++ b/i18n/it/android.md @@ -1,14 +1,14 @@ --- -meta_title: "Consigli su Android: GrapheneOS e DivestOS - Privacy Guides" +meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" title: "Android" icon: 'simple/android' -description: Puoi sostituire il sistema operativo sul tuo telefono Android con queste alternative sicure e rispettose della privacy. +description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: - "@context": http://schema.org "@type": WebPage - name: Sistemi operativi Android privati + name: Private Android Operating Systems url: "./" - "@context": http://schema.org @@ -16,14 +16,14 @@ schema: name: Android image: /assets/img/android/android.svg url: https://source.android.com/ - sameAs: https://it.wikipedia.org/wiki/Android + sameAs: https://en.wikipedia.org/wiki/Android_(operating_system) - "@context": http://schema.org "@type": CreativeWork name: GrapheneOS image: /assets/img/android/grapheneos.svg url: https://grapheneos.org/ - sameAs: https://it.wikipedia.org/wiki/GrapheneOS + sameAs: https://en.wikipedia.org/wiki/GrapheneOS subjectOf: "@context": http://schema.org "@type": WebPage @@ -47,7 +47,7 @@ schema: "@type": Brand name: Google image: /assets/img/android/google-pixel.png - sameAs: https://it.wikipedia.org/wiki/Google_Pixel + sameAs: https://en.wikipedia.org/wiki/Google_Pixel review: "@type": Review author: @@ -74,7 +74,7 @@ schema: - "@context": http://schema.org "@type": MobileApplication - name: Visualizzatore PDF Sicuro + name: Secure PDF Viewer applicationCategory: Utilities operatingSystem: Android --- @@ -95,26 +95,31 @@ Questi sono i sistemi operativi, i dispositivi e le app Android che consigliamo, Consigliamo di installare uno di questi sistemi operativi personalizzati di Android sul tuo dispositivo, elencati per preferenza, a seconda della compatibilità del tuo dispositivo con essi. -!!! note "Nota" +
+

Nota

- I dispositivi al termine della propria vita (come i dispositivi a "supporto esteso" di GrapheneOS o CalyxOS), non hanno correzioni di sicurezza complete (aggiornamenti del firmware), a causa dell'interruzione del supporto dall'OEM. Questi dispositivi non sono considerabili interamente sicuri, indipendentemente dal software installato. +I dispositivi al termine della propria vita (come i dispositivi a "supporto esteso" di GrapheneOS o CalyxOS), non hanno correzioni di sicurezza complete (aggiornamenti del firmware), a causa dell'interruzione del supporto dall'OEM. Questi dispositivi non sono considerabili interamente sicuri, indipendentemente dal software installato. + +
### GrapheneOS -!!! recommendation +
- ![Logo di GrapheneOS](assets/img/android/grapheneos.svg#only-light){ align=right } - ![Logo di GrapheneOS](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** è la scelta migliore per quanto riguarda privacy e sicurezza. - - GrapheneOS fornisce maggiore [sicurezza] (https://it.wikipedia.org/wiki/Hardening) e miglioramenti della privacy. Dispone di un [allocatore di memoria rafforzato](https://github.com/GrapheneOS/hardened_malloc), autorizzazioni di rete e dei sensori e varie altre [funzionalità di sicurezza](https://grapheneos.org/features). Inoltre, dispone di aggiornamenti completi del firmware e build firmate, quindi, l'avvio verificato è pienamente supportato. - - [:octicons-home-16: Home](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentazione} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Codice Sorgente" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribuisci } +![Logo di GrapheneOS](assets/img/android/grapheneos.svg#only-light){ align=right } +![Logo di GrapheneOS](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** è la scelta migliore per quanto riguarda privacy e sicurezza. + +GrapheneOS fornisce maggiore [sicurezza] (https://it.wikipedia.org/wiki/Hardening) e miglioramenti della privacy. Dispone di un [allocatore di memoria rafforzato](https://github.com/GrapheneOS/hardened_malloc), autorizzazioni di rete e dei sensori e varie altre [funzionalità di sicurezza](https://grapheneos.org/features). Inoltre, dispone di aggiornamenti completi del firmware e build firmate, quindi, l'avvio verificato è pienamente supportato. + +[:octicons-home-16: Home](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Politica sulla Privacy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentazione} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Codice Sorgente" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribuisci } + +
GrapheneOS supporta [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), che esegue [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) in piena modalità sandbox, come ogni altra app regolare. Ciò significa che puoi sfruttare gran parte dei Google Play Services, come le [notifiche push](https://firebase.google.com/docs/cloud-messaging/), pur avendo il pieno controllo sui suoi accessi e autorizzazioni, e contenendoli in un [profilo di lavoro](os/android-overview.md#work-profile) o [profilo dell'utente](os/android-overview.md#user-profiles) specifico e di tua scelta. @@ -124,19 +129,21 @@ I telefoni Google Pixel sono i soli dispositivi che, al momento, soddisfano i [r ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** è un soft-fork di [LineageOS](https://lineageos.org/). - DivestOS eredita molti [dispositivi supportati](https://divestos.org/index.php?page=devices&base=LineageOS) da LineageOS. Dispone di build firmate, rendendo possibile l'[avvio verificato](https://source.android.com/security/verifiedboot) su alcuni dispositivi non Pixel. - - [:octicons-home-16: Home](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Servizio Onion" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentazione} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Codice Sorgente" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribuisci } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** è un soft-fork di [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. Dispone di build firmate, rendendo possibile l'[avvio verificato](https://source.android.com/security/verifiedboot) su alcuni dispositivi non Pixel. + +[:octicons-home-16: Home](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Servizio Onion" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Politica sulla Privacy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentazione} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Codice Sorgente" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribuisci } + +
DivestOS offre [correzioni](https://gitlab.com/divested-mobile/cve_checker) automatizzate delle vulnerabilità del kernel (CVE), minori blob proprietari e un file degli [host](https://divested.dev/index.php?page=dnsbl) personalizzato. La sua WebView rafforzata, [Mulch](https://gitlab.com/divested-mobile/mulch), consente la [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) per tutte le architetture e il [partizionamento dello stato di rete](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), ricevendo aggiornamenti fuori programma. Inoltre, DivestOS include delle correzioni del kernel da GrapheneOS e consente tutte le funzionalità di sicurezza del kernel disponibili, tramite il [rafforzamento di defconfig](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). Tutti i kernel più recenti della versione 3.4 includono la [sanificazione](https://lwn.net/Articles/334747/) completa delle pagine e tutti i circa 22 kernel compilati in Cleng, dispongono di [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471). @@ -144,11 +151,14 @@ DivestOS implementa alcune correzioni di rafforzamento del sistema, sviluppate i DivestOS utilizza F-Droid come app store predefinito. Normalmente [consigliamo di evitare F-Droid](#f-droid), ma su DivestOS non è possibile farlo; gli sviluppatori aggiornano le loro applicazioni tramite i propri repository di F-Droid ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) e [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). Consigliamo di disabilitare l'applicazione ufficiale F-Droid e di utilizzare [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **con i repository di DivestOS abilitati** per mantenere questi componenti aggiornati. Per le altre app, sono ancora validi i nostri metodi consigliati per ottenerle. -!!! warning "Attenzione" +
+

Avviso

- Lo [stato](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) di aggiornamento del firmware di DivestOS e il controllo della qualiità variano tra i dispositivi supportati. Continuiamo a consigliare GrapheneOS a seconda della compatibilità con il tuo dispositivo. Per altri dispositivi, DivestOS è una buona alternativa. - - Non tutti i dispositivi supportati dispongono dell'avvio verificato e, alcuni, lo eseguono meglio di altri. +Lo [stato](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) di aggiornamento del firmware di DivestOS e il controllo della qualiità variano tra i dispositivi supportati. Continuiamo a consigliare GrapheneOS a seconda della compatibilità con il tuo dispositivo. Per altri dispositivi, DivestOS è una buona alternativa. + +Non tutti i dispositivi supportati dispongono dell'avvio verificato e, alcuni, lo eseguono meglio di altri. + +
## Dispositivi Android @@ -156,7 +166,7 @@ Acquistando un dispositivo, consigliamo di prenderne uno il più recente possibi Evita di acquistare telefoni dagli operatori di rete mobile. Questi, spesso, dispongono di un **bootloader bloccato** e non supportano lo [sblocco dell'OEM](https://source.android.com/devices/bootloader/locking_unlocking). Queste varianti ti impediranno di installare alcun tipo di distribuzione alternativa di Android. -Presta molta **attenzione** all'acquisto di telefoni di seconda mano dai mercati online. Controlla sempre la reputazione del venditore. Se il dispositivo è rubato, c'è la possibilità che [l'IMEI sia bloccato](https://www.gsma.com/security/resources/imei-blacklisting/). Esiste anche il rischio di essere associati all'attività del proprietario precedente. +Presta molta **attenzione** all'acquisto di telefoni di seconda mano dai mercati online. Controlla sempre la reputazione del venditore. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). Esiste anche il rischio di essere associati all'attività del proprietario precedente. Altri consigli sui dispositivi Android e sulla compatibilità del sistema operativo: @@ -168,15 +178,17 @@ Altri consigli sui dispositivi Android e sulla compatibilità del sistema operat I telefoni Google Pixel sono i **soli** dispositivi che consigliamo di acquistare. I telefoni Pixel presentano una maggiore sicurezza hardware rispetto agli altri dispositivi Android al momento presenti sul mercato, grazie all'adeguato supporto ai sistemi operativi di terze parti e ai chip di sicurezza personalizzati '[Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) di Google, che fungono da Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - I dispositivi **Google Pixel** sono noti per avere una buona sicurezza e per supportare adeguatamente l'[Avvio Verificato](https://source.android.com/docs/security/features/verifiedboot?hl=it), anche installando sistemi operativi personalizzati. - - A partire da **Pixel 8** e **8 Pro**, i dispositivi Pixel riceveranno un minimo di 7 anni di aggiornamenti di sicurezza garantiti, assicurando una durata molto maggiore, rispetto a 2-5 anni tipicamente offerti dagli OEM concorrenti. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +I dispositivi **Google Pixel** sono noti per avere una buona sicurezza e per supportare adeguatamente l'[Avvio Verificato](https://source.android.com/docs/security/features/verifiedboot?hl=it), anche installando sistemi operativi personalizzati. + +A partire da **Pixel 8** e **8 Pro**, i dispositivi Pixel riceveranno un minimo di 7 anni di aggiornamenti di sicurezza garantiti, assicurando una durata molto maggiore, rispetto a 2-5 anni tipicamente offerti dagli OEM concorrenti. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Gli Elementi Sicuri come Titan M2 sono più limitati dell'Ambiente d'Esecuzione Attendibile del processore, utilizzato da gran parte degli altri dispositivi, essendo utilizzati soltanto per l'archiviazione segreta, l'attestazione del hardware e la limitazione della frequenza, non per eseguire i programmi "attendibili". I telefoni privi di un Elemento Sicuro, devono utilizzare TEE per *tutte* queste funzionalità, risultando in una maggiore superficie di attacco. @@ -198,43 +210,53 @@ Consigliamo un'ampia gamma di app di Android, tramite questo sito. Le app qui el ### Shelter -!!! recommendation +
- ![Logo di Shelter](assets/img/android/shelter.svg){ align=right } - - **Shelter** è un'app che ti aiuta a sfruttare la funzionalità del Profilo di Lavoro di Android per isolare o duplicare le app sul tuo dispositivo. - - Shelter supporta il blocco della ricerca dei contatti tra profili e la condivisione di file tra profili tramite il gestore dei file predefinito ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Codice Sorgente" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribuisci } +![Logo di Shelter](assets/img/android/shelter.svg){ align=right } -!!! warning "Attenzione" +**Shelter** è un'app che ti aiuta a sfruttare la funzionalità del Profilo di Lavoro di Android per isolare o duplicare le app sul tuo dispositivo. - Shelter è consigliato rispetto a [Insular](https://secure-system.gitlab.io/Insular/) e [Island](https://github.com/oasisfeng/island), poiché supporta il [blocco della ricerca dei contatti](https://secure-system.gitlab.io/Insular/faq.html). - - Utilizzando Shelter, ti affidi interamente al suo sviluppatore, poiché Shelter agisce da [Admin del Dispositivo](https://developer.android.com/guide/topics/admin/device-admin?hl=it) per creare il Profilo di Lavoro, e ha ampio accesso ai dati memorizzati nel Profilo di Lavoro. +Shelter supporta il blocco della ricerca dei contatti tra profili e la condivisione di file tra profili tramite il gestore dei file predefinito ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Codice Sorgente" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribuisci } + +
+ +
+

Avviso

+ +Shelter è consigliato rispetto a [Insular](https://secure-system.gitlab.io/Insular/) e [Island](https://github.com/oasisfeng/island), poiché supporta il [blocco della ricerca dei contatti](https://secure-system.gitlab.io/Insular/faq.html). + +Utilizzando Shelter, ti affidi interamente al suo sviluppatore, poiché Shelter agisce da [Admin del Dispositivo](https://developer.android.com/guide/topics/admin/device-admin?hl=it) per creare il Profilo di Lavoro, e ha ampio accesso ai dati memorizzati nel Profilo di Lavoro. + +
### Secure Camera -!!! recommendation +
- ![Logo di Secure Camera](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Logo di Secure camera](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** è un'app per fotocamera incentrata sulla privacy e la sicurezza che può catturare immagini, video e codici QR. Le estensioni del fornitore di CameraX (Ritratto, HDR, Notte, Ritocco del Viso e Automatica) sono supportate anche sui dispositivi disponibili. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentazione} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Codice Sorgente" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribuisci } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Logo di Secure Camera](assets/img/android/secure_camera.svg#only-light){ align=right } +![Logo di Secure camera](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + + **Secure Camera** è un'app per fotocamera incentrata sulla privacy e la sicurezza che può catturare immagini, video e codici QR. Le estensioni del fornitore di CameraX (Ritratto, HDR, Notte, Ritocco del Viso e Automatica) sono supportate anche sui dispositivi disponibili. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Le principali funzionalità di privacy includono: @@ -242,50 +264,63 @@ Le principali funzionalità di privacy includono: - Utilizzo della nuova API [Media](https://developer.android.com/training/data-storage/shared/media), dunque le [autorizzazioni d'archiviazione](https://developer.android.com/training/data-storage) non sono necessarie - L'autorizzazione del microfono non è necessaria a meno che tu non voglia registrare dei suoni -!!! note "Nota" +
+

Nota

- I metadati non sono al momento eliminati dai file video, ma la funzionalità è in fase di sviluppo. - - I metadati sull'orientamento dell'immagine non vengono eliminati. Se abiliti la posizione (su Secure Camera), nemmeno questa **sarà** eliminata. Se desideri eliminarla in seguito, dovrai utilizzare un'app esterna come [ExifEraser](data-redaction.md#exiferaser). +I metadati non sono al momento eliminati dai file video, ma la funzionalità è in fase di sviluppo. -### Visualizzatore PDF Sicuro +I metadati sull'orientamento dell'immagine non vengono eliminati. Se abiliti la posizione (su Secure Camera), nemmeno questa **sarà** eliminata. Se desideri eliminarla in seguito, dovrai utilizzare un'app esterna come [ExifEraser](data-redaction.md#exiferaser). -!!! recommendation "consiglio" +
- ![Logo di Secure PDF Viewer](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Logo di Secure PDF Viewer](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** è un visualizzatore di PDF basato su [pdf.js](https://it.wikipedia.org/wiki/PDF.js), che non richiede alcuna autorizzazione. Il PDF viene inserito in una [webview](https://developer.android.com/guide/webapps/webview) [in modalità sandbox](https://it.wikipedia.org/wiki/Sandbox). Ciò significa che non richiede direttamente l'autorizzazione all'accesso dei contenuti o dei file. - - La [Politica sulla Sicurezza dei Contenuti](https://en.wikipedia.org/wiki/Content_Security_Policy) è utilizzata per imporre che le proprietà JavaScript e di stile nella WebView siano contenuti interamente statici. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Codice Sorgente" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribuisci } - - ??? downloads "Scarica" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +### Secure PDF Viewer + +
+ +![Logo di Secure PDF Viewer](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Logo di Secure PDF Viewer](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** è un visualizzatore di PDF basato su [pdf.js](https://it.wikipedia.org/wiki/PDF.js), che non richiede alcuna autorizzazione. Il PDF viene inserito in una [webview](https://developer.android.com/guide/webapps/webview) [in modalità sandbox](https://it.wikipedia.org/wiki/Sandbox). Ciò significa che non richiede direttamente l'autorizzazione all'accesso dei contenuti o dei file. + +La [Politica sulla Sicurezza dei Contenuti](https://en.wikipedia.org/wiki/Content_Security_Policy) è utilizzata per imporre che le proprietà JavaScript e di stile nella WebView siano contenuti interamente statici. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Ottenere le Applicazioni ### Obtainium -!!! recommendation +
- ![Logo di Obtainium](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** è un gestore di app che ti consente di installare e aggiornare le app direttamente dalla pagina di rilascio dello sviluppatore (es. GitHub, GitLab, il sito web dello sviluppatore, ecc.), piuttosto che un app store/repository di app centralizzato. Supporta gli aggiornamenti automatici in background su Android 12 e versioni successive. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Codice Sorgente" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribuisci} - - ??? downloads "Scarica" - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Logo di Obtainium](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** è un gestore di app che ti consente di installare e aggiornare le app direttamente dalla pagina di rilascio dello sviluppatore (es. GitHub, GitLab, il sito web dello sviluppatore, ecc.), piuttosto che un app store/repository di app centralizzato. Supporta gli aggiornamenti automatici in background su Android 12 e versioni successive. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium ti consente di scaricare file di installazione APK da un'ampia varietà di fonti, ed è compito tuo assicurarti che tali fonti e applicazioni siano legittime. Ad esempio, utilizzare Obtainium per installare Signal dalla [pagina APK di Signal](https://signal.org/android/apk/) dovrebbe andare bene, ma l'installazione da repository APK di terze parti come Aptoide o APKPure potrebbe comportare ulteriori rischi. Il rischio di installare un *aggiornamento* dannoso è minore, poiché Android stesso verifica che tutti gli aggiornamenti delle app siano firmati dallo stesso sviluppatore dell'app esistente sul tuo telefono prima di installarli. @@ -297,19 +332,24 @@ L'app store di GrapheneOS è disponibile su [GitHub](https://github.com/Graphene Il Google Play Store richiede un profilo Google per l'accesso, il che non è un bene per la privacy. Puoi aggirare tale problema utilizzando un client alternativo, come Aurora Store. -!!! recommendation +
- ![Logo di Aurora Store](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** è un client di Google Play Store che non richiede un profilo di Google, Google Play Services o microG per scaricare le app. - - [:octicons-home-16: Pagina Principale](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Politica sulla Privacy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Codice Sorgente" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Logo di Aurora Store](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** è un client di Google Play Store che non richiede un profilo di Google, Google Play Services o microG per scaricare le app. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store non consente di scaricare app a pagamento con la propria funzione del profilo anonimo. Facoltativamente, puoi accedere con il tuo profilo di Google all'Aurora Store per scaricare le app acquistate, consentendo l'accesso all'elenco delle app installate a Google e, tuttavia, beneficiando del fatto di non richiedere il client completo di Google Play e Google Play Services o microG sul tuo dispositivo. @@ -374,17 +414,23 @@ Altri repository popolari di terze parti per F-Droid, come [IzzyOnDroid](https:/ Detto questo, i repository [F-Droid](https://f-droid.org/en/packages/) e [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) ospitano innumerevoli applicazioni, quindi possono essere uno strumento utile per cercare e scoprire applicazioni open source che si possono poi scaricare attraverso altri mezzi come Play Store, Aurora Store o ottenendo l'APK direttamente dallo sviluppatore. Quando cerchi nuove applicazioni attraverso questo metodo, dovresti usare il tuo miglior giudizio e tenere d'occhio la frequenza con cui l'applicazione viene aggiornata. Le applicazioni obsolete possono fare affidamento su librerie non supportate, tra le altre cose, comportando un potenziale rischio per la sicurezza. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In alcuni rari casi, lo sviluppatore di un'app la distribuirà soltanto tramite F-Droid, ([Gadgetbridge](https://gadgetbridge.org/) ne è un esempio). Se hai davvero bisogno di un'applicazione del genere, ti consigliamo di utilizzare il nuovo client [F-Droid Basic](https://f-droid.org/it/packages/org.fdroid.basic/) invece dell'applicazione originale F-Droid per ottenerla. F-Droid Basic può eseguire aggiornamenti incustoditi senza estensioni privilegiate o root, inoltre ha un set di funzionalità ridotto (limitando la superficie di attacco). +In alcuni rari casi, lo sviluppatore di un'app la distribuirà soltanto tramite F-Droid, ([Gadgetbridge](https://gadgetbridge.org/) ne è un esempio). Se hai davvero bisogno di un'applicazione del genere, ti consigliamo di utilizzare il nuovo client [F-Droid Basic](https://f-droid.org/it/packages/org.fdroid.basic/) invece dell'applicazione originale F-Droid per ottenerla. F-Droid Basic può eseguire aggiornamenti incustoditi senza estensioni privilegiate o root, inoltre ha un set di funzionalità ridotto (limitando la superficie di attacco). + +
## Criteri **Ti preghiamo di notare che non siamo affiliati con alcun progetto consigliato.** Oltre ai [nostri criteri standard](about/criteria.md), abbiamo sviluppato una serie chiara di requisiti per consentirci di fornire consigli oggettivi. Ti suggeriamo di familiarizzare con questo elenco prima di scegliere di utilizzare un progetto e di condurre le tue ricerche per assicurarti che si tratti della scelta adatta a te. -!!! example "Questa sezione è nuova" +
+

Questa sezione è nuova

- Stiamo lavorando per stabilire i criteri definiti per ogni sezione del nostro sito e, questa, potrebbe essere soggetta a modifiche. Se hai qualsiasi domanda sui nostri criteri, ti preghiamo di [chiedere sul nostro forum](https://discuss.privacyguides.net/latest) e di non supporre che non abbiamo considerato qualcosa, formulando i nostri consigli, se non elencato qui. Molti fattori sono presi in considerazione e discussi quando consigliamo un progetto e la documentazione di ognuno è in lavorazione. +Stiamo lavorando per stabilire i criteri definiti per ogni sezione del nostro sito e, questa, potrebbe essere soggetta a modifiche. Se hai qualsiasi domanda sui nostri criteri, ti preghiamo di [chiedere sul nostro forum](https://discuss.privacyguides.net/latest) e di non supporre che non abbiamo considerato qualcosa, formulando i nostri consigli, se non elencato qui. Molti fattori sono presi in considerazione e discussi quando consigliamo un progetto e la documentazione di ognuno è in lavorazione. + +
### Sistemi Operativi diff --git a/i18n/it/calendar.md b/i18n/it/calendar.md index 05aad70d..84a81419 100644 --- a/i18n/it/calendar.md +++ b/i18n/it/calendar.md @@ -1,7 +1,7 @@ --- -title: "Sincronizzazione del calendario" +title: "Sincronizzazione Calendario" icon: material/calendar -description: I calendari contengono alcuni dei tuoi dati più sensibili; utilizza prodotti che implementino la crittografia a riposo. +description: Calendars contain some of your most sensitive data; use products that implement encryption at rest. cover: calendar.webp --- @@ -9,48 +9,58 @@ I calendari contengono alcuni dei tuoi dati più sensibili; utilizza prodotti ch ## Tuta -!!! recommendation +
- ![Logo di Tuta](assets/img/calendario/tuta.svg){ align=right } - - **Tuta** offre un calendario gratuito e criptato su tutte le loro piattaforme supportate. Le funzionalità includono: E2EE automatico di tutti i dati, funzionalità di condivisione, importazione/esportazione, autenticazione a più fattori e [more](https://tuta.com/it/calendar-app-comparison). - - Calendari multipli e funzionalità di condivisione estese sono limitate agli abbonati a pagamento. - - [:octicons-home-16: Pagina Principale](https://tuta.com/it/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/it/privacy){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentazione} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Codice Sorgente" } - [:octicons-heart-16:](https://tuta.com/it/community/){ .card-link title=Contribuisci } - - ??? downloads "Scarica" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=ch.protonmail.android&gl=It) - - [:simple-appstore: App Store](https://apps.apple.com/it/app/tutanota-encrypted-email-app/id922429609) - - [:simple-windows11: Windows](https://tuta.com/it/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/it/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/it/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/it/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Logo di Tuta](assets/img/calendario/tuta.svg){ align=right } + +**Tuta** offre un calendario gratuito e criptato su tutte le loro piattaforme supportate. Le funzionalità includono: E2EE automatico di tutti i dati, funzionalità di condivisione, importazione/esportazione, autenticazione a più fattori e [more](https://tuta.com/it/calendar-app-comparison). + +Calendari multipli e funzionalità di condivisione estese sono limitate agli abbonati a pagamento. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** è un servizio di calendario crittografato disponibile per i membri Proton, tramite web o client mobile. Le caratteristiche includono: E2EE automatico di tutti i dati, funzioni di condivisione, funzionalità di importazione/esportazione e [altre funzionalità](https://proton.me/support/proton-calendar-guide). Gli utenti con il piano gratuito hanno accesso a 3 calendari, mentre quelli con il piano a pagamento possono creare fino a 25 calendari. Anche la funzionalità di condivisione estesa è limitata agli abbonati. - - [:octicons-home-16: Home](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentazione} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Codice Sorgente" } - - ??? downloads "Scarica" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/it/app/proton-calendar-agenda-sicura/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** è un servizio di calendario crittografato disponibile per i membri Proton, tramite web o client mobile. Le caratteristiche includono: E2EE automatico di tutti i dati, funzioni di condivisione, funzionalità di importazione/esportazione e [altre funzionalità](https://proton.me/support/proton-calendar-guide). Gli utenti con il piano gratuito hanno accesso a 3 calendari, mentre quelli con il piano a pagamento possono creare fino a 25 calendari. Anche la funzionalità di condivisione estesa è limitata agli abbonati. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Sfortunatamente, a Gennaio 2024, Proton non ha [ancora](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) rilasciato il codice sorgente per la propria app del Calendariio su Android o iOS. Il client web di Proton Calendar è open source. @@ -58,9 +68,12 @@ Sfortunatamente, a Gennaio 2024, Proton non ha [ancora](https://discuss.privacyg **Ti preghiamo di notare che non siamo affiliati con alcun progetto consigliato.** Oltre ai [nostri criteri standard](about/criteria.md), abbiamo sviluppato una serie chiara di requisiti per consentirci di fornire consigli oggettivi. Ti suggeriamo di familiarizzare con questo elenco prima di scegliere di utilizzare un progetto e di condurre le tue ricerche per assicurarti che si tratti della scelta adatta a te. -!!! example "Questa sezione è nuova" +
+

Questa sezione è nuova

- Stiamo lavorando per stabilire i criteri definiti per ogni sezione del nostro sito e, questa, potrebbe essere soggetta a modifiche. Se hai qualsiasi domanda sui nostri criteri, ti preghiamo di [chiedere sul nostro forum](https://discuss.privacyguides.net/latest) e di non supporre che non abbiamo considerato qualcosa, formulando i nostri consigli, se non elencato qui. Molti fattori sono presi in considerazione e discussi quando consigliamo un progetto e la documentazione di ognuno è in lavorazione. +Stiamo lavorando per stabilire i criteri definiti per ogni sezione del nostro sito e, questa, potrebbe essere soggetta a modifiche. Se hai qualsiasi domanda sui nostri criteri, ti preghiamo di [chiedere sul nostro forum](https://discuss.privacyguides.net/latest) e di non supporre che non abbiamo considerato qualcosa, formulando i nostri consigli, se non elencato qui. Molti fattori sono presi in considerazione e discussi quando consigliamo un progetto e la documentazione di ognuno è in lavorazione. + +
### Requisiti minimi diff --git a/i18n/it/cloud.md b/i18n/it/cloud.md index 334cd14e..2cd39157 100644 --- a/i18n/it/cloud.md +++ b/i18n/it/cloud.md @@ -10,29 +10,37 @@ Molti fornitori di spazio di archiviazione su cloud richiedono la tua totale fid Se queste alternative non soddisfano le tue esigenze, ti suggeriamo di utilizzare un software di crittografia come [Cryptomator](encryption.md#cryptomator-cloud), con un altro fornitore su cloud. L'utilizzo di Cryptomator insieme a **qualsiasi** fornitore su cloud (compresi questi), può essere una buona idea per ridurre il rischio di vulnerabilità di crittografia nei client nativi di un fornitore. -??? question "Stai cercando Nextcloud?" +
+Looking for Nextcloud? - Nextcloud è [ancora uno strumento consigliato](productivity.md) per ospitare autonomamente una suite di gestione dei file, tuttavia, al momento sconsigliamo fornitori di archiviazione Nextcloud di terze parti, poiché [sconsigliamo](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) la funzionalità di E2EE integrata di Nextcloud per gli utenti privati. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Logo di Proton Drive](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** è un fornitore svizzero di spazio d'archiviazione crittografato su cloud, del popolare fornitore di email crittografate, [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Home](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentazione} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Codice Sorgente" } - - ??? downloads "Scarica" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive&gl=IT) - - [:simple-appstore: App Store](https://apps.apple.com/it/app/proton-drive-cloud-storage/id1509667851) - - [:simple-windows11: Windows](https://proton.me/it/drive/download) - - [:simple-apple: macOS](https://proton.me/it/drive/download) +![Logo di Proton Drive](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** è un fornitore svizzero di spazio d'archiviazione crittografato su cloud, del popolare fornitore di email crittografate, [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
L'applicazione web di Proton Drive è stata controllata indipendentemente da Securitum nel [2021](https://proton.me/blog/security-audit-all-proton-apps); i dettagli completi non sono stati resi disponibili, ma la lettera di attestazione di Securitum afferma che: @@ -42,23 +50,28 @@ I nuovi client mobile di Proton Drive non sono ancora stati controllati pubblica ## Tresorit -!!! recommendation +
- ![Logo di Tresorit](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** è un fornitore svizzero-ungherese di archiviazione crittografata su cloud, fondato nel 2011. Tresorit è di proprietà di Swiss Post, il servizio postale nazionale della Svizzera. - - [:octicons-home-16: Home](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentazione} - - ??? downloads "Scarica" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile&gl=it) - - [:simple-appstore: App Store](https://apps.apple.com/it/app/tresorit/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Logo di Tresorit](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** è un fornitore svizzero-ungherese di archiviazione crittografata su cloud, fondato nel 2011. Tresorit è di proprietà di Swiss Post, il servizio postale nazionale della Svizzera. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit ha ricevuto una serie di controlli di sicurezza indipendenti: @@ -76,9 +89,12 @@ Hanno anche ricevuto l'Etichetta di Affidabilità Digitale, una certificazione d **Ti preghiamo di notare che non siamo affiliati con alcun progetto consigliato.** Oltre ai [nostri criteri standard](about/criteria.md), abbiamo sviluppato una serie chiara di requisiti per consentirci di fornire consigli oggettivi. Ti suggeriamo di familiarizzare con questo elenco prima di scegliere di utilizzare un progetto e di condurre le tue ricerche per assicurarti che si tratti della scelta adatta a te. -!!! example "Questa sezione è nuova" +
+

Questa sezione è nuova

- Stiamo lavorando per stabilire i criteri definiti per ogni sezione del nostro sito e, questa, potrebbe essere soggetta a modifiche. Se hai qualsiasi domanda sui nostri criteri, ti preghiamo di [chiedere sul nostro forum](https://discuss.privacyguides.net/latest) e di non supporre che non abbiamo considerato qualcosa, formulando i nostri consigli, se non elencato qui. Molti fattori sono presi in considerazione e discussi quando consigliamo un progetto e la documentazione di ognuno è in lavorazione. +Stiamo lavorando per stabilire i criteri definiti per ogni sezione del nostro sito e, questa, potrebbe essere soggetta a modifiche. Se hai qualsiasi domanda sui nostri criteri, ti preghiamo di [chiedere sul nostro forum](https://discuss.privacyguides.net/latest) e di non supporre che non abbiamo considerato qualcosa, formulando i nostri consigli, se non elencato qui. Molti fattori sono presi in considerazione e discussi quando consigliamo un progetto e la documentazione di ognuno è in lavorazione. + +
### Requisiti minimi diff --git a/i18n/it/email-clients.md b/i18n/it/email-clients.md index 88a786b8..7e808ee0 100644 --- a/i18n/it/email-clients.md +++ b/i18n/it/email-clients.md @@ -1,42 +1,49 @@ --- title: "Client Email" icon: material/email-open -description: Questi client email rispettano la privacy e supportano la crittografia OpenPGP. +description: These email clients are privacy-respecting and support OpenPGP email encryption. cover: email-clients.webp --- Il nostro elenco di consigli contiene i client email che supportano sia [OpenPGP](encryption.md#openpgp) che l'autenticazione forte, come [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth consente di utilizzare l'[autenticazione a più fattori](basics/multi-factor-authentication.md) e di prevenire il furto del profilo. -??? warning "L'email non fornisce la segretezza in avanti" +
+Email does not provide forward secrecy - Utilzzando la tecnologia di crittografia end-to-end (E2EE), come OpenPGP, l'email conterrà comunque [dei metadati](email.md#email-metadata-overview) non crittografati nell'intestazione dell'email. - - Inoltre, OpenPGP non supporta la [segretezza in avanti](https://it.wikipedia.org/wiki/Forward_secrecy), il che significa che se la chiave privata tua o del destinatario dovesse mai essere perduta, tutti i messaggi precedenti crittografati con essa saranno esposti: [Come proteggo le mie chiavi private?](basics/email-security.md) - Considera di utilizzare un mezzo che fornisca la segretezza in avanti: - - [Comunicazione in tempo reaale](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Multipiattaforma ### Thunderbird -!!! recommendation +
- ![Logo di Thunderbird](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** è un client email, newsgroup, feed di notizie e chat (XMPP, IRC, Twitter) gratuito, open source e multipiattaforma, sviluppato dalla community di Thunderbird e precedentemente dalla Mozilla Foundation. - - [:octicons-home-16: Home](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentazione} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Codice Sorgente" } - - ??? downloads "Scarica" - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Logo di Thunderbird](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** è un client email, newsgroup, feed di notizie e chat (XMPP, IRC, Twitter) gratuito, open source e multipiattaforma, sviluppato dalla community di Thunderbird e precedentemente dalla Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Configurazione consigliata @@ -61,169 +68,217 @@ Queste opzioni si trovano in :material-menu: → **Impostazioni** → **Privacy ### Apple Mail (macOS) -!!! recommendation +
- ![Logo di Apple Mail](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** è incluso in macOS ed è estendibile per supportare OpenPGP con [GPG Suite](encryption.md#gpg-suite), che aggiunge la possibilità di inviare email crittografate in PGP. - - [:octicons-home-16: Home](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentazione} +![Logo di Apple Mail](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** è incluso in macOS ed è estendibile per supportare OpenPGP con [GPG Suite](encryption.md#gpg-suite), che aggiunge la possibilità di inviare email crittografate in PGP. + +[:octicons-home-16: Home](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Politica sulla Privacy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentazione} + + + +
Apple Mail può caricare i contenuti da remoto in background o bloccarli interamente e nascondere l'indirizzo IP di mittenti su [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) e [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Logo di Canary Mail](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** è un client email a pagamento progettato per semplificare la crittografia end-to-end con funzionaalità di sicurezza come il blocco biometrico dell'app. - - [:octicons-home-16: Home](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentazione} - - ??? downloads "Scarica" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/it/app/canary-mail-app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Logo di Canary Mail](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning "Attenzione" +**Canary Mail** è un client email a pagamento progettato per semplificare la crittografia end-to-end con funzionaalità di sicurezza come il blocco biometrico dell'app. - Canary Mail ha rilasciato soltanto di recente un client per Windows e Android, sebbene non crediamo sia altrettanto stabile, quanto le controparti per iOS e Mac. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Avviso + +Canary Mail ha rilasciato soltanto di recente un client per Windows e Android, sebbene non crediamo sia altrettanto stabile, quanto le controparti per iOS e Mac. + +
Canary Mail è closed-source. Lo consigliamo a causa di alcune scelte per i client email su iOS, che supportano l'E2EE PGP. ### FairEmail (Android) -!!! recommendation +
- ![Logo di FairEmail ](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** è un'app di email minimale e open source che utilizza gli standard apeerti (IMAP, SMTP, OpenPGP), con un basso consumo di dati e batteria. - - [:octicons-home-16: Home](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentazione} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Codice Sorgente" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribuisci } - - ??? downloads "Scarica" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![Logo di FairEmail ](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** è un'app di email minimale e open source che utilizza gli standard apeerti (IMAP, SMTP, OpenPGP), con un basso consumo di dati e batteria. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Logo di Evolution](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** è un'applicazione per la gestione delle informazioni personali che fornisce funzionalità integrate di email, calendario e rubrica. Evolution dispone di un'ampia [documentazione](https://help.gnome.org/users/evolution/stable/) per aiutarti a iniziare. - - [:octicons-home-16: Home](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentazione} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Codice Sorgente" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribuisci } - - ??? downloads "Scarica" - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Logo di Evolution](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** è un'applicazione per la gestione delle informazioni personali che fornisce funzionalità integrate di email, calendario e rubrica. Evolution dispone di un'ampia [documentazione](https://help.gnome.org/users/evolution/stable/) per aiutarti a iniziare. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![Logo di K-9 Mail](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** è un'applicazione indipendente di email che supporta le caselle POP3 e IMAP, ma supporta soltanto le email push per IMAP. - - In futuro, K-9 Mail sarà il client [ufficiale](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) di Thunderbird per Android. - - [:octicons-home-16: Pagina Principale](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentazione} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Codice Sorgente" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribuisci } - - ??? downloads "Scarica" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![Logo di K-9 Mail](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning "Attenzione" +**K-9 Mail** è un'applicazione indipendente di email che supporta le caselle POP3 e IMAP, ma supporta soltanto le email push per IMAP. - Rispondendo a qualcuno in una mailing list, l'opzione "rispondi" potrebbe includere anche la mailing list stessa. Per maggiori informazioni visita il ticket [#3738 di thundernest/k-9](https://github.com/thundernest/k-9/issues/3738). +In futuro, K-9 Mail sarà il client [ufficiale](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) di Thunderbird per Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Avviso

+ +Rispondendo a qualcuno in una mailing list, l'opzione "rispondi" potrebbe includere anche la mailing list stessa. Per maggiori informazioni visita il ticket [#3738 di thundernest/k-9](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Logo di Kontact](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** è un'applicazione di gestione delle informazioni personali (PIM), dal progetto [KDE](https://dke.org). Fornisce un client email, rubrica, un'agenda e un client RSS. - - [:octicons-home-16: Home](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentazione} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Codice Sorgente" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribuisci } - - ??? downloads "Scarica" - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Logo di Kontact](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** è un'applicazione di gestione delle informazioni personali (PIM), dal progetto [KDE](https://dke.org). Fornisce un client email, rubrica, un'agenda e un client RSS. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Logo di Mailvelope](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** è un'estensione del browser che consente lo scambio di email crittografate secondo lo standard di crittografia OpenPGP. - - [:octicons-home-16: Home](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentazione} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Codice Sorgente" } - - ??? downloads "Scarica" - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Logo di Mailvelope](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** è un'estensione del browser che consente lo scambio di email crittografate secondo lo standard di crittografia OpenPGP. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![Logo di NeoMutt](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** è un lettore di email a riga di comando (MUA) open source per Linux e BSD. È una biforcazione di [Mutt](https://it.wikipedia.org/wiki/Mutt) con funzionalità aggiuntive. - - NeoMutt è un client basato su testo con una curva d'apprendimento molto rapida. Tuttavia, è molto personalizzabile. - - [:octicons-home-16: Home](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentazione} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Codice Sorgente" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribuisci } - - ??? downloads "Scarica" - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![Logo di NeoMutt](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** è un lettore di email a riga di comando (MUA) open source per Linux e BSD. È una biforcazione di [Mutt](https://it.wikipedia.org/wiki/Mutt) con funzionalità aggiuntive. + +NeoMutt è un client basato su testo con una curva d'apprendimento molto rapida. Tuttavia, è molto personalizzabile. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteri **Ti preghiamo di notare che non siamo affiliati con alcun progetto consigliato.** Oltre ai [nostri criteri standard](about/criteria.md), abbiamo sviluppato una serie chiara di requisiti per consentirci di fornire consigli oggettivi. Ti suggeriamo di familiarizzare con questo elenco prima di scegliere di utilizzare un progetto e di condurre le tue ricerche per assicurarti che si tratti della scelta adatta a te. -!!! example "Questa sezione è nuova" +
+

Questa sezione è nuova

- Stiamo lavorando per stabilire i criteri definiti per ogni sezione del nostro sito e, questa, potrebbe essere soggetta a modifiche. Se hai qualsiasi domanda sui nostri criteri, ti preghiamo di [chiedere sul nostro forum](https://discuss.privacyguides.net/latest) e di non supporre che non abbiamo considerato qualcosa, formulando i nostri consigli, se non elencato qui. Molti fattori sono presi in considerazione e discussi quando consigliamo un progetto e la documentazione di ognuno è in lavorazione. +Stiamo lavorando per stabilire i criteri definiti per ogni sezione del nostro sito e, questa, potrebbe essere soggetta a modifiche. Se hai qualsiasi domanda sui nostri criteri, ti preghiamo di [chiedere sul nostro forum](https://discuss.privacyguides.net/latest) e di non supporre che non abbiamo considerato qualcosa, formulando i nostri consigli, se non elencato qui. Molti fattori sono presi in considerazione e discussi quando consigliamo un progetto e la documentazione di ognuno è in lavorazione. + +
### Requisiti minimi diff --git a/i18n/it/financial-services.md b/i18n/it/financial-services.md index 8843c4f7..60175a1f 100644 --- a/i18n/it/financial-services.md +++ b/i18n/it/financial-services.md @@ -12,37 +12,48 @@ Effettuare pagamenti online è una delle maggiori sfide per la privacy. Questi s Esistono numerosi servizi che forniscono "carte di debito virtuali", che puoi utilizzare con i commercianti online, senza rivelare le tue informazioni bancarie o di fatturazione reali, in gran parte dei casi. È importante notare che questi servizi finanziari **non** sono anonimi e sono soggetti alle leggi di "Conoscenza del Cliente" (KYC) e potrebbero richiedere il tuo ID o altre informazioni identificative. Questi servizi sono principalmente utili per proteggerti dalle violazioni di dati dei commercianti, dal tracciamento meno sofisticato o dalla correlazione degli acquisti dalle agenzie di marketing, nonché dal furto di dati online; e **non** per effettuare un acquisto in completo anonimato. -!!! tip "Consulta la tua banca attuale" +
+

Check your current bank

- Molte banche e fornitori di carte di credito offrono una funzionalità nativa di carte virtuali. Se ne utilizzi una che fornisce già quest'opzione, è preferibile utilizzarla, rispetto ai seguenti consigli, in gran parte dei casi. Così, non affidi a svariate parti le tue informazioni personali. +Molte banche e fornitori di carte di credito offrono una funzionalità nativa di carte virtuali. Se ne utilizzi una che fornisce già quest'opzione, è preferibile utilizzarla, rispetto ai seguenti consigli, in gran parte dei casi. Così, non affidi a svariate parti le tue informazioni personali. + +
### Privacy.com (US) -!!! recommendation +
- ![Logo di Privacy.com](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Logo di Privacy.com](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - Il piano gratuito di **Privacy.com** ti consente di creare fino a 12 carte virtuali al mese, di impostare i limiti di spesa su tali carte e di chiuderle istantaneamente. Il piano a pagamento ti consente di creare fino a 36 carte al mese, ottenere l'1% di cashback sugli acquisti e di nascondere le informazioni sulle transazioni dalla tua banca. - - [:octicons-home-16: Home](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentazione} +![Logo di Privacy.com](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Logo di Privacy.com](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +Il piano gratuito di **Privacy.com** ti consente di creare fino a 12 carte virtuali al mese, di impostare i limiti di spesa su tali carte e di chiuderle istantaneamente. Il piano a pagamento ti consente di creare fino a 36 carte al mese, ottenere l'1% di cashback sugli acquisti e di nascondere le informazioni sulle transazioni dalla tua banca. + +[:octicons-home-16: Home](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Politica sulla Privacy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentazione} + + + +
Privacy.com fornisce le informazioni sui commercianti da cui acquisti alla tua banca, di default. La funzione a pagamento "commercianti discreti", nasconde le informazioni del commerciante dalla tua banca, così che, questa, visualizzi soltanto che un acquisto è stato effettuato con Privacy.com, ma non dove è stato speso il denaro; tuttavia, questo non è infallibile e, ovviamente, Privacy.com continua a essere a conoscenza dei commercianti con cui stai spendendo denaro. ### MySudo (US, a pagamento) -!!! recommendation +
- ![Logo di MySudo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![Logo di MySudo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** fornisce fino a 9 carte virtuali a seconda del piano acquistato. I piani a pagamento, inoltre, includono funzionalità che potrebbero tornare utili per effettuare acquisti privatamente, come numeri di telefono e indirizzi email virtuali, sebbene, tipicamente, consigliamo altri [fornitori di alias email](email.md), per l'utilizzo prolungato di alias email. - - [:octicons-home-16: Home](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentazione} +![Logo di MySudo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![Logo di MySudo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** fornisce fino a 9 carte virtuali a seconda del piano acquistato. I piani a pagamento, inoltre, includono funzionalità che potrebbero tornare utili per effettuare acquisti privatamente, come numeri di telefono e indirizzi email virtuali, sebbene, tipicamente, consigliamo altri [fornitori di alias email](email.md), per l'utilizzo prolungato di alias email. + +[:octicons-home-16: Home](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Politica sulla Privacy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentazione} + + + +
Le carte virtuali di MySudo sono attualmente disponibili solo tramite la loro app iOS. @@ -50,9 +61,12 @@ Le carte virtuali di MySudo sono attualmente disponibili solo tramite la loro ap **Ti preghiamo di notare che non siamo affiliati con alcun progetto consigliato.** Oltre ai [nostri criteri standard](about/criteria.md), abbiamo sviluppato una serie chiara di requisiti per consentirci di fornire consigli oggettivi. Ti suggeriamo di familiarizzare con questo elenco prima di scegliere di utilizzare un progetto e di condurre le tue ricerche per assicurarti che si tratti della scelta adatta a te. -!!! example "Questa sezione è nuova" +
+

Questa sezione è nuova

- Stiamo lavorando per stabilire i criteri definiti per ogni sezione del nostro sito e, questa, potrebbe essere soggetta a modifiche. Se hai qualsiasi domanda sui nostri criteri, ti preghiamo di [chiedere sul nostro forum](https://discuss.privacyguides.net/latest) e di non supporre che non abbiamo considerato qualcosa, formulando i nostri consigli, se non elencato qui. Molti fattori sono presi in considerazione e discussi quando consigliamo un progetto e la documentazione di ognuno è in lavorazione. +Stiamo lavorando per stabilire i criteri definiti per ogni sezione del nostro sito e, questa, potrebbe essere soggetta a modifiche. Se hai qualsiasi domanda sui nostri criteri, ti preghiamo di [chiedere sul nostro forum](https://discuss.privacyguides.net/latest) e di non supporre che non abbiamo considerato qualcosa, formulando i nostri consigli, se non elencato qui. Molti fattori sono presi in considerazione e discussi quando consigliamo un progetto e la documentazione di ognuno è in lavorazione. + +
- Consente la creazione di più carte che fungano da scudo tra il commerciante e le tue finanze personali. - Le carte non devono richiederti di fornire informazioni sull'indirizzo di fatturazione accurate, al commerciante. @@ -63,23 +77,30 @@ Questi servizi ti consentono di acquistare carte regalo per numerosi commerciant ### CoinCards -!!! recommendation +
- ![Logo di CoinCards](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (Disponibile negli USA e in Canada) ti consente di acquistare carte regalo per una vasta gamma di commercianti. - - [:octicons-home-16: Home](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Politica sulla Privacy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentazione} +![Logo di CoinCards](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (Disponibile negli USA e in Canada) ti consente di acquistare carte regalo per una vasta gamma di commercianti. + +[:octicons-home-16: Home](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Politica sulla Privacy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentazione} + + + +
### Criteri **Ti preghiamo di notare che non siamo affiliati con alcun progetto consigliato.** Oltre ai [nostri criteri standard](about/criteria.md), abbiamo sviluppato una serie chiara di requisiti per consentirci di fornire consigli oggettivi. Ti suggeriamo di familiarizzare con questo elenco prima di scegliere di utilizzare un progetto e di condurre le tue ricerche per assicurarti che si tratti della scelta adatta a te. -!!! example "Questa sezione è nuova" +
+

Questa sezione è nuova

- Stiamo lavorando per stabilire i criteri definiti per ogni sezione del nostro sito e, questa, potrebbe essere soggetta a modifiche. Se hai qualsiasi domanda sui nostri criteri, ti preghiamo di [chiedere sul nostro forum](https://discuss.privacyguides.net/latest) e di non supporre che non abbiamo considerato qualcosa, formulando i nostri consigli, se non elencato qui. Molti fattori sono presi in considerazione e discussi quando consigliamo un progetto e la documentazione di ognuno è in lavorazione. +Stiamo lavorando per stabilire i criteri definiti per ogni sezione del nostro sito e, questa, potrebbe essere soggetta a modifiche. Se hai qualsiasi domanda sui nostri criteri, ti preghiamo di [chiedere sul nostro forum](https://discuss.privacyguides.net/latest) e di non supporre che non abbiamo considerato qualcosa, formulando i nostri consigli, se non elencato qui. Molti fattori sono presi in considerazione e discussi quando consigliamo un progetto e la documentazione di ognuno è in lavorazione. + +
- Accetta pagamenti in [una criptovaluta consigliata](cryptocurrency.md). - Nessun requisito identificativo. diff --git a/i18n/it/router.md b/i18n/it/router.md index 72e6b299..06f12416 100644 --- a/i18n/it/router.md +++ b/i18n/it/router.md @@ -1,7 +1,7 @@ --- -title: "Firmware per router" +title: "Firmware per Router" icon: material/router-wireless -description: Questi sistemi operativi alternativi sono utilizzabili per proteggere il tuo router o il punto d'accesso del Wi-Fi. +description: These alternative operating systems can be used to secure your router or Wi-Fi access point. cover: router.webp --- @@ -9,32 +9,40 @@ Di seguito sono elencati alcuni sistemi operativi alternativi, utilizzabili sui ## OpenWrt -!!! recommendation +
- ![Logo di OpenWrt](assets/img/router/openwrt.svg#only-light){ align=right } - ![Logo di OpenWrt](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** è un sistema operativo basato su Linux, utilizzato principalmente su dispositivi incorporati per instradare il traffico di rete. Include util-linux, uClibc e BusyBox. Tutti i componenti sono stati ottimizzati per i router domestici. - - [:octicons-home-16: Home](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentazione} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Codice Sorgente" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribuisci } +![Logo di OpenWrt](assets/img/router/openwrt.svg#only-light){ align=right } +![Logo di OpenWrt](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** è un sistema operativo basato su Linux, utilizzato principalmente su dispositivi incorporati per instradare il traffico di rete. Include util-linux, uClibc e BusyBox. Tutti i componenti sono stati ottimizzati per i router domestici. + +[:octicons-home-16: Home](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentazione} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Codice Sorgente" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribuisci } + + + +
È possibile consultare la [tabella hardware](https://openwrt.org/toh/start) di OpenWrt per verificare se il tuo dispositivo è supportato. ## OPNsense -!!! recommendation +
- ![Logo di OPNsense](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** è una piattaforma open source di firewall e routing basata su FreeBSD che incorpora molte funzionalità avanzate come il traffic shaping, il bilanciamento del carico e le funzionalità VPN, con molte altre funzionalità disponibili sotto forma di plugin. OPNsense è comunemente distribuito come firewall perimetrale, router, punto d'accesso wireless, server DHCP, server DNS ed endpoint VPN. - - [:octicons-home-16: Home](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentazione} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Codice Sorgente" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribuisci} +![Logo di OPNsense](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** è una piattaforma open source di firewall e routing basata su FreeBSD che incorpora molte funzionalità avanzate come il traffic shaping, il bilanciamento del carico e le funzionalità VPN, con molte altre funzionalità disponibili sotto forma di plugin. OPNsense è comunemente distribuito come firewall perimetrale, router, punto d'accesso wireless, server DHCP, server DNS ed endpoint VPN. + +[:octicons-home-16: Home](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentazione} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Codice Sorgente" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribuisci} + + + +
OPNsense è stato originariamente sviluppato come una biforcazione di [pfSense](https://en.wikipedia.org/wiki/PfSense), ed entrambi i progetti sono noti per essere distribuzioni di firewall gratuite e affidabili, che offrono funzionalità spesso trovate soltanto in costosi firewall commerciali. Lanciato nel 2015, gli sviluppatori di OPNsense hanno [citato](https://docs.opnsense.org/history/thefork.html) numerosi problemi di sicurezza e qualità del codice di pfSense che, a loro avviso, rendevano necessaria una biforcazione del progetto, nonché le numerose preoccupazioni sull'acquisizione di maggioranza di pfSense da parte di Netgate, e della futura direzione del progetto di pfSense. @@ -42,9 +50,12 @@ OPNsense è stato originariamente sviluppato come una biforcazione di [pfSense]( **Ti preghiamo di notare che non siamo affiliati con alcun progetto consigliato.** Oltre ai [nostri criteri standard](about/criteria.md), abbiamo sviluppato una serie chiara di requisiti per consentirci di fornire consigli oggettivi. Ti suggeriamo di familiarizzare con questo elenco prima di scegliere di utilizzare un progetto e di condurre le tue ricerche per assicurarti che si tratti della scelta adatta a te. -!!! example "Questa sezione è nuova" +
+

Questa sezione è nuova

- Stiamo lavorando per stabilire i criteri definiti per ogni sezione del nostro sito e, questa, potrebbe essere soggetta a modifiche. Se hai qualsiasi domanda sui nostri criteri, ti preghiamo di [chiedere sul nostro forum](https://discuss.privacyguides.net/latest) e di non supporre che non abbiamo considerato qualcosa, formulando i nostri consigli, se non elencato qui. Molti fattori sono presi in considerazione e discussi quando consigliamo un progetto e la documentazione di ognuno è in lavorazione. +Stiamo lavorando per stabilire i criteri definiti per ogni sezione del nostro sito e, questa, potrebbe essere soggetta a modifiche. Se hai qualsiasi domanda sui nostri criteri, ti preghiamo di [chiedere sul nostro forum](https://discuss.privacyguides.net/latest) e di non supporre che non abbiamo considerato qualcosa, formulando i nostri consigli, se non elencato qui. Molti fattori sono presi in considerazione e discussi quando consigliamo un progetto e la documentazione di ognuno è in lavorazione. + +
- Deve essere open source. - Deve ricevere aggiornamenti regolari. diff --git a/i18n/ja/android.md b/i18n/ja/android.md index ade07bb2..91b5baf0 100644 --- a/i18n/ja/android.md +++ b/i18n/ja/android.md @@ -16,7 +16,7 @@ schema: name: Android image: /assets/img/android/android.svg url: https://source.android.com/ - sameAs: https://ja.wikipedia.org/wiki/Android_(%E3%82%AA%E3%83%9A%E3%83%AC%E3%83%BC%E3%83%86%E3%82%A3%E3%83%B3%E3%82%B0%E3%82%B7%E3%82%B9%E3%83%86%E3%83%A0) + sameAs: https://en.wikipedia.org/wiki/Android_(operating_system) - "@context": http://schema.org "@type": CreativeWork @@ -47,7 +47,7 @@ schema: "@type": Brand name: Google image: /assets/img/android/google-pixel.png - sameAs: https://ja.wikipedia.org/wiki/Google_Pixel + sameAs: https://en.wikipedia.org/wiki/Google_Pixel review: "@type": Review author: @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! メモ +
+

Note

- End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. +End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** is the best choice when it comes to privacy and security. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: ホームページ](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="プライバシーポリシー" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=ドキュメンテーション} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="ソースコード" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=貢献 } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** is the best choice when it comes to privacy and security. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: ホームページ](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="プライバシーポリシー" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=ドキュメンテーション} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="ソースコード" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=貢献 } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOSは、デフォルトのアプリストアとしてF-Droidを使用しています。 We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! 警告 +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Androidデバイス @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw 携帯電話会社から電話を購入するのは避けること。 These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. 売り手の評判を常にチェックすること。 If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. 売り手の評判を常にチェックすること。 If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! 警告 +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! メモ +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - 画像の向きに関するメタデータは削除されません。 If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +画像の向きに関するメタデータは削除されません。 If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! 推奨事項 +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? ダウンロード - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## 規準 **私たちは、推薦するどのプロジェクトとも提携していません。**客観的に推薦できるよう、[標準となる規準](about/criteria.md)に加えて、一連の明確な要件を定めています。 プロジェクトを利用する前に、このリストをよく理解し、ご自身で調査を行って、そのプロジェクトがあなたにとって適切な選択かどうかをご確認ください。 -!!! example "この項目は最近作成されました" +
+

This section is new

- 私たちは、サイトの各項目に関して、定義された規準の確立に取り組んでいます。この規準は変更される可能性があります。 規準について疑問がある場合は、[フォーラムで質問](https://discuss.privacyguides.net/latest)してください。また、ここに記載されていない場合でも、私たちがプロジェクトを推奨する際に、そうした事柄を考慮しなかったと仮定するのはお止めください。 プロジェクトを推奨する際に考慮され、議論される要素は多くあり、そのすべてを文書化する作業は現在進行中です。 +私たちは、サイトの各項目に関して、定義された規準の確立に取り組んでいます。この規準は変更される可能性があります。 規準について疑問がある場合は、[フォーラムで質問](https://discuss.privacyguides.net/latest)してください。また、ここに記載されていない場合でも、私たちがプロジェクトを推奨する際に、そうした事柄を考慮しなかったと仮定するのはお止めください。 プロジェクトを推奨する際に考慮され、議論される要素は多くあり、そのすべてを文書化する作業は現在進行中です。 + +
### オペレーティングシステム diff --git a/i18n/ja/calendar.md b/i18n/ja/calendar.md index 9c76a439..c35e9e80 100644 --- a/i18n/ja/calendar.md +++ b/i18n/ja/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Protonカレンダー -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **私たちは、推薦するどのプロジェクトとも提携していません。**客観的に推薦できるよう、[標準となる規準](about/criteria.md)に加えて、一連の明確な要件を定めています。 プロジェクトを利用する前に、このリストをよく理解し、ご自身で調査を行って、そのプロジェクトがあなたにとって適切な選択かどうかをご確認ください。 -!!! example "この項目は最近作成されました" +
+

This section is new

- 私たちは、サイトの各項目に関して、定義された規準の確立に取り組んでいます。この規準は変更される可能性があります。 規準について疑問がある場合は、[フォーラムで質問](https://discuss.privacyguides.net/latest)してください。また、ここに記載されていない場合でも、私たちがプロジェクトを推奨する際に、そうした事柄を考慮しなかったと仮定するのはお止めください。 プロジェクトを推奨する際に考慮され、議論される要素は多くあり、そのすべてを文書化する作業は現在進行中です。 +私たちは、サイトの各項目に関して、定義された規準の確立に取り組んでいます。この規準は変更される可能性があります。 規準について疑問がある場合は、[フォーラムで質問](https://discuss.privacyguides.net/latest)してください。また、ここに記載されていない場合でも、私たちがプロジェクトを推奨する際に、そうした事柄を考慮しなかったと仮定するのはお止めください。 プロジェクトを推奨する際に考慮され、議論される要素は多くあり、そのすべてを文書化する作業は現在進行中です。 + +
### 最低要件 diff --git a/i18n/ja/cloud.md b/i18n/ja/cloud.md index bfe0ad3f..4f761572 100644 --- a/i18n/ja/cloud.md +++ b/i18n/ja/cloud.md @@ -10,29 +10,37 @@ cover: cloud.webp If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "Nextcloudをお探しですか?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive ロゴ](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive**は、人気の暗号化電子メールプロバイダーである[Proton Mail](email.md#proton-mail)が提供する、スイスの暗号化クラウドストレージ プロバイダーです。 - - [:octicons-home-16: ホームページ](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="プライバシーポリシー" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=ドキュメント} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="ソースコード" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive ロゴ](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive**は、人気の暗号化電子メールプロバイダーである[Proton Mail](email.md#proton-mail)が提供する、スイスの暗号化クラウドストレージ プロバイダーです。 + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
Proton Driveのウェブアプリケーションは、[2021](https://proton.me/blog/security-audit-all-proton-apps)年にSecuritumにより独立の監査を受けています。完全な詳細は公開されませんでしたが、Securitumの認証状態は以下の通りです。 @@ -42,23 +50,28 @@ Proton Driveの新しいモバイルクライアントは、まだ第三者に ## Tresorit -!!! recommendation +
- ![Tresorit ロゴ](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit**は、2011年に設立された、スイスとハンガリーの暗号化クラウドストレージ プロバイダーです。 Tresoritはスイスの国営郵便局であるスイスポストが所有しています。 - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit ロゴ](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit**は、2011年に設立された、スイスとハンガリーの暗号化クラウドストレージ プロバイダーです。 Tresoritはスイスの国営郵便局であるスイスポストが所有しています。 + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **私たちは、推薦するどのプロジェクトとも提携していません。**客観的に推薦できるよう、[標準となる規準](about/criteria.md)に加えて、一連の明確な要件を定めています。 プロジェクトを利用する前に、このリストをよく理解し、ご自身で調査を行って、そのプロジェクトがあなたにとって適切な選択かどうかをご確認ください。 -!!! example "この項目は最近作成されました" +
+

This section is new

- 私たちは、サイトの各項目に関して、定義された規準の確立に取り組んでいます。この規準は変更される可能性があります。 規準について疑問がある場合は、[フォーラムで質問](https://discuss.privacyguides.net/latest)してください。また、ここに記載されていない場合でも、私たちがプロジェクトを推奨する際に、そうした事柄を考慮しなかったと仮定するのはお止めください。 プロジェクトを推奨する際に考慮され、議論される要素は多くあり、そのすべてを文書化する作業は現在進行中です。 +私たちは、サイトの各項目に関して、定義された規準の確立に取り組んでいます。この規準は変更される可能性があります。 規準について疑問がある場合は、[フォーラムで質問](https://discuss.privacyguides.net/latest)してください。また、ここに記載されていない場合でも、私たちがプロジェクトを推奨する際に、そうした事柄を考慮しなかったと仮定するのはお止めください。 プロジェクトを推奨する際に考慮され、議論される要素は多くあり、そのすべてを文書化する作業は現在進行中です。 + +
### 最低要件 diff --git a/i18n/ja/email-clients.md b/i18n/ja/email-clients.md index ed0a95e3..d88dab93 100644 --- a/i18n/ja/email-clients.md +++ b/i18n/ja/email-clients.md @@ -1,41 +1,49 @@ --- title: "メールクライアント" icon: material/email-open -description: これらの電子メールクライアントはプライバシーを尊重し、OpenPGP電子メール暗号化をサポートしています。 +description: These email clients are privacy-respecting and support OpenPGP email encryption. cover: email-clients.webp --- Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## クロスプラットフォーム ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: ホームページ](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="プライバシーポリシー" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=ドキュメンテーション} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="ソースコード" } - - ??? ダウンロード - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### 推奨する設定 @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail(macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: ホームページ](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="プライバシーポリシー" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=ドキュメンテーション} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: ホームページ](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="プライバシーポリシー" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=ドキュメンテーション} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: ホームページ](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="プライバシーポリシー" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=ドキュメンテーション} - - ??? ダウンロード - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! 警告 +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mailのソースコードは公開されていません。 We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail(Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="プライバシーポリシー" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=ドキュメンテーション} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="ソースコード" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=貢献 } - - ??? ダウンロード - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution(GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="プライバシーポリシー" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=ドキュメンテーション} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="ソースコード" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=貢献 } - - ??? ダウンロード - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! 警告 +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact(KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: ホームページ](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="プライバシーポリシー" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=ドキュメンテーション} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="ソースコード" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=貢献 } - - ??? ダウンロード - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvlope(ブラウザー) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: ホームページ](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="プライバシーポリシー" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=ドキュメンテーション} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="ソースコード" } - - ??? ダウンロード - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: ホームページ](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=ドキュメンテーション} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="ソースコード" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=貢献 } - - ??? ダウンロード - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## 規準 **私たちは、推薦するどのプロジェクトとも提携していません。**客観的に推薦できるよう、[標準となる規準](about/criteria.md)に加えて、一連の明確な要件を定めています。 プロジェクトを利用する前に、このリストをよく理解し、ご自身で調査を行って、そのプロジェクトがあなたにとって適切な選択かどうかをご確認ください。 -!!! example "この項目は最近作成されました" +
+

This section is new

- 私たちは、サイトの各項目に関して、定義された規準の確立に取り組んでいます。この規準は変更される可能性があります。 規準について疑問がある場合は、[フォーラムで質問](https://discuss.privacyguides.net/latest)してください。また、ここに記載されていない場合でも、私たちがプロジェクトを推奨する際に、そうした事柄を考慮しなかったと仮定するのはお止めください。 プロジェクトを推奨する際に考慮され、議論される要素は多くあり、そのすべてを文書化する作業は現在進行中です。 +私たちは、サイトの各項目に関して、定義された規準の確立に取り組んでいます。この規準は変更される可能性があります。 規準について疑問がある場合は、[フォーラムで質問](https://discuss.privacyguides.net/latest)してください。また、ここに記載されていない場合でも、私たちがプロジェクトを推奨する際に、そうした事柄を考慮しなかったと仮定するのはお止めください。 プロジェクトを推奨する際に考慮され、議論される要素は多くあり、そのすべてを文書化する作業は現在進行中です。 + +
### 最低要件 diff --git a/i18n/ja/financial-services.md b/i18n/ja/financial-services.md index 62ac5ddc..cd59175f 100644 --- a/i18n/ja/financial-services.md +++ b/i18n/ja/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **私たちは、推薦するどのプロジェクトとも提携していません。**客観的に推薦できるよう、[標準となる規準](about/criteria.md)に加えて、一連の明確な要件を定めています。 プロジェクトを利用する前に、このリストをよく理解し、ご自身で調査を行って、そのプロジェクトがあなたにとって適切な選択かどうかをご確認ください。 -!!! example "この項目は最近作成されました" +
+

This section is new

- 私たちは、サイトの各項目に関して、定義された規準の確立に取り組んでいます。この規準は変更される可能性があります。 規準について疑問がある場合は、[フォーラムで質問](https://discuss.privacyguides.net/latest)してください。また、ここに記載されていない場合でも、私たちがプロジェクトを推奨する際に、そうした事柄を考慮しなかったと仮定するのはお止めください。 プロジェクトを推奨する際に考慮され、議論される要素は多くあり、そのすべてを文書化する作業は現在進行中です。 +私たちは、サイトの各項目に関して、定義された規準の確立に取り組んでいます。この規準は変更される可能性があります。 規準について疑問がある場合は、[フォーラムで質問](https://discuss.privacyguides.net/latest)してください。また、ここに記載されていない場合でも、私たちがプロジェクトを推奨する際に、そうした事柄を考慮しなかったと仮定するのはお止めください。 プロジェクトを推奨する際に考慮され、議論される要素は多くあり、そのすべてを文書化する作業は現在進行中です。 + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### 規準 **私たちは、推薦するどのプロジェクトとも提携していません。**客観的に推薦できるよう、[標準となる規準](about/criteria.md)に加えて、一連の明確な要件を定めています。 プロジェクトを利用する前に、このリストをよく理解し、ご自身で調査を行って、そのプロジェクトがあなたにとって適切な選択かどうかをご確認ください。 -!!! example "この項目は最近作成されました" +
+

This section is new

- 私たちは、サイトの各項目に関して、定義された規準の確立に取り組んでいます。この規準は変更される可能性があります。 規準について疑問がある場合は、[フォーラムで質問](https://discuss.privacyguides.net/latest)してください。また、ここに記載されていない場合でも、私たちがプロジェクトを推奨する際に、そうした事柄を考慮しなかったと仮定するのはお止めください。 プロジェクトを推奨する際に考慮され、議論される要素は多くあり、そのすべてを文書化する作業は現在進行中です。 +私たちは、サイトの各項目に関して、定義された規準の確立に取り組んでいます。この規準は変更される可能性があります。 規準について疑問がある場合は、[フォーラムで質問](https://discuss.privacyguides.net/latest)してください。また、ここに記載されていない場合でも、私たちがプロジェクトを推奨する際に、そうした事柄を考慮しなかったと仮定するのはお止めください。 プロジェクトを推奨する際に考慮され、議論される要素は多くあり、そのすべてを文書化する作業は現在進行中です。 + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - IDは不要。 diff --git a/i18n/ja/router.md b/i18n/ja/router.md index 67a9123c..9649571b 100644 --- a/i18n/ja/router.md +++ b/i18n/ja/router.md @@ -9,32 +9,40 @@ Below are a few alternative operating systems, that can be used on routers, Wi-F ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } + + + +
You can consult OpenWrt's [table of hardware](https://openwrt.org/toh/start) to check if your device is supported. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } + + + +
OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.org/wiki/PfSense), and both projects are noted for being free and reliable firewall distributions which offer features often only found in expensive commercial firewalls. Launched in 2015, the developers of OPNsense [cited](https://docs.opnsense.org/history/thefork.html) a number of security and code-quality issues with pfSense which they felt necessitated a fork of the project, as well as concerns about Netgate's majority acquisition of pfSense and the future direction of the pfSense project. @@ -42,9 +50,12 @@ OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.or **私たちは、推薦するどのプロジェクトとも提携していません。**客観的に推薦できるよう、[標準となる規準](about/criteria.md)に加えて、一連の明確な要件を定めています。 プロジェクトを利用する前に、このリストをよく理解し、ご自身で調査を行って、そのプロジェクトがあなたにとって適切な選択かどうかをご確認ください。 -!!! example "この項目は最近作成されました" +
+

This section is new

- 私たちは、サイトの各項目に関して、定義された規準の確立に取り組んでいます。この規準は変更される可能性があります。 規準について疑問がある場合は、[フォーラムで質問](https://discuss.privacyguides.net/latest)してください。また、ここに記載されていない場合でも、私たちがプロジェクトを推奨する際に、そうした事柄を考慮しなかったと仮定するのはお止めください。 プロジェクトを推奨する際に考慮され、議論される要素は多くあり、そのすべてを文書化する作業は現在進行中です。 +私たちは、サイトの各項目に関して、定義された規準の確立に取り組んでいます。この規準は変更される可能性があります。 規準について疑問がある場合は、[フォーラムで質問](https://discuss.privacyguides.net/latest)してください。また、ここに記載されていない場合でも、私たちがプロジェクトを推奨する際に、そうした事柄を考慮しなかったと仮定するのはお止めください。 プロジェクトを推奨する際に考慮され、議論される要素は多くあり、そのすべてを文書化する作業は現在進行中です。 + +
- オープンソースであること。 - 定期的にアップデートが行われること。 diff --git a/i18n/ko/android.md b/i18n/ko/android.md index 80796ef2..26d77091 100644 --- a/i18n/ko/android.md +++ b/i18n/ko/android.md @@ -1,14 +1,14 @@ --- -meta_title: "Android 권장 사항: GrapheneOS, DivestOS - Privacy Guides" +meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" title: "Android" icon: 'simple/android' -description: Android 휴대폰의 운영 체제를 보다 안전하고 프라이버시를 중시하는 대체제로 변경할 수 있습니다. +description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: - "@context": http://schema.org "@type": WebPage - name: 프라이버시 중점 Android 운영 체제 + name: Private Android Operating Systems url: "./" - "@context": http://schema.org @@ -16,7 +16,7 @@ schema: name: Android image: /assets/img/android/android.svg url: https://source.android.com/ - sameAs: https://ko.wikipedia.org/wiki/%EC%95%88%EB%93%9C%EB%A1%9C%EC%9D%B4%EB%93%9C_(%EC%9A%B4%EC%98%81%EC%B2%B4%EC%A0%9C) + sameAs: https://en.wikipedia.org/wiki/Android_(operating_system) - "@context": http://schema.org "@type": CreativeWork @@ -47,7 +47,7 @@ schema: "@type": Brand name: Google image: /assets/img/android/google-pixel.png - sameAs: https://ko.wikipedia.org/wiki/%EA%B5%AC%EA%B8%80_%ED%94%BD%EC%85%80 + sameAs: https://en.wikipedia.org/wiki/Google_Pixel review: "@type": Review author: @@ -95,26 +95,31 @@ schema: Privacy Guides에서 권장하는 커스텀 Android 운영 체제의 우선 순위는 본 페이지에 나열된 순서와 동일합니다. 여러분이 가진 기기 호환성에 따라 적절한 운영 체제를 선택하시는 것을 권장드립니다. -!!! note "참고" +
+

Note

- 지원 종료 기기(GrapheneOS, CalyxOS에서 '연장 지원'에 해당하는 기기)의 경우, OEM 지원 중단으로 인해 전체 보안 패치(펌웨어 업데이트)를 제공받을 수 없습니다. 지원 종료 기기는 그 어떤 소프트웨어를 설치하더라도 완벽히 안전하다고 간주할 수 없습니다. +지원 종료 기기(GrapheneOS, CalyxOS에서 '연장 지원'에 해당하는 기기)의 경우, OEM 지원 중단으로 인해 전체 보안 패치(펌웨어 업데이트)를 제공받을 수 없습니다. 지원 종료 기기는 그 어떤 소프트웨어를 설치하더라도 완벽히 안전하다고 간주할 수 없습니다. + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS 로고](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS 로고](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS**는 프라이버시 및 보안 면에서 최고의 선택입니다. - - GraphneOS는 추가적인 [보안 강화](https://en.wikipedia.org/wiki/Hardening_(computing))와 프라이버시 강화 기능을 제공합니다. [메모리 할당 보안 강화](https://github.com/GrapheneOS/hardened_malloc), 네트워크 및 센서 권한 등 다양한 [보안 기능](https://grapheneos.org/features)을 포함하고 있습니다. GrapheneOS는 전체 펌웨어 업데이트 및 서명된 빌드 또한 제공하므로, 자체 검사 부팅을 완벽하게 지원합니다. - - [:octicons-home-16: 홈페이지](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="프라이버시 정책" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=문서} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="소스 코드" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=기부 } +![GrapheneOS 로고](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS 로고](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS**는 프라이버시 및 보안 면에서 최고의 선택입니다. + +GraphneOS는 추가적인 [보안 강화](https://en.wikipedia.org/wiki/Hardening_(computing))와 프라이버시 강화 기능을 제공합니다. [메모리 할당 보안 강화](https://github.com/GrapheneOS/hardened_malloc), 네트워크 및 센서 권한 등 다양한 [보안 기능](https://grapheneos.org/features)을 포함하고 있습니다. GrapheneOS는 전체 펌웨어 업데이트 및 서명된 빌드 또한 제공하므로, 자체 검사 부팅을 완벽하게 지원합니다. + +[:octicons-home-16: 홈페이지](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="프라이버시 정책" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=문서} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="소스 코드" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=기부 } + +
GrapheneOS는 [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play) 지원하여, [Google Play 서비스](https://en.wikipedia.org/wiki/Google_Play_Services)를 여타 일반 앱처럼 완벽하게 샌드박스를 적용하여 실행할 수 있습니다. 즉, 원하는 특정 [직장 프로필](os/android-overview.md#work-profile)이나 [사용자 프로필](os/android-overview.md#user-profiles)에 추가하여, [푸시 알림](https://firebase.google.com/docs/cloud-messaging/) 등 대부분의 Google Play 서비스를 이용하면서도 권한 및 접근 영역을 완전히 제어할 수 있습니다. @@ -124,19 +129,21 @@ Google Pixel 스마트폰은 현재 GrapheneOS [하드웨어 보안 요구 사 ### DivestOS -!!! recommendation +
- ![DivestOS 로고](assets/img/android/divestos.svg){ align=right } - - **DivestOS**는 [LineageOS](https://lineageos.org/)의 소프트 포크입니다. - DivestOS는 LineageOS의 다양한 [지원 기기](https://divestos.org/index.php?page=devices&base=LineageOS)를 물려받았습니다. 서명된 빌드가 존재하여, Pixel 외 기기에서 [검증 부팅(Verified Boot)](https://source.android.com/security/verifiedboot)을 사용할 수 있습니다. - - [:octicons-home-16: 홈페이지](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion 서비스" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="프라이버시 정책" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=문서} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="소스 코드" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=기부 } +![DivestOS 로고](assets/img/android/divestos.svg){ align=right } + +**DivestOS**는 [LineageOS](https://lineageos.org/)의 소프트 포크입니다. +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. 서명된 빌드가 존재하여, Pixel 외 기기에서 [검증 부팅(Verified Boot)](https://source.android.com/security/verifiedboot)을 사용할 수 있습니다. + +[:octicons-home-16: 홈페이지](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion 서비스" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="프라이버시 정책" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=문서} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="소스 코드" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=기부 } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning "경고" +
+

Warning

- DivestOS 펌웨어 업데이트의 [세부 상태](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) 및 품질 관리는 지원하는 기기에 따라 다릅니다. GrapheneOS와 호환되는 기기라면 GrapheneOS를 권장합니다. GrapheneOS 미지원 기기의 경우, DivestOS는 좋은 대체제입니다. - - 검증 부팅은 모든 지원 기기에서 사용 가능한 것은 아니며, 일부 기기는 다른 기기보다 더 원활할 수 있습니다. +DivestOS 펌웨어 업데이트의 [세부 상태](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) 및 품질 관리는 지원하는 기기에 따라 다릅니다. GrapheneOS와 호환되는 기기라면 GrapheneOS를 권장합니다. GrapheneOS 미지원 기기의 경우, DivestOS는 좋은 대체제입니다. + +검증 부팅은 모든 지원 기기에서 사용 가능한 것은 아니며, 일부 기기는 다른 기기보다 더 원활할 수 있습니다. + +
## Android 기기 @@ -156,7 +166,7 @@ DivestOS uses F-Droid as its default app store. We normally [recommend avoiding 이동 통신사로부터 휴대폰을 사는 것은 지양해야 합니다. 이동 통신사에서 판매하는 휴대폰은 보통 **부트로더 잠금**이 걸려 있으며, [OEM 잠금 해제](https://source.android.com/devices/bootloader/locking_unlocking)를 지원하지 않습니다. 이 경우, 어떤 종류의 대체 Android 배포판도 설치할 수 없습니다. -온라인에서 중고 휴대폰을 구입할 때에는 매우 **주의해야** 합니다. 판매자의 평판을 항상 확인하세요. 만약 해당 기기가 도난된 기기였을 경우, [IMEI 블랙리스트](https://www.gsma.com/security/resources/imei-blacklisting/)에 등재될 가능성이 있습니다. 또한 이전 소유자의 활동과 연관될 수 있다는 위험성도 존재합니다. +온라인에서 중고 휴대폰을 구입할 때에는 매우 **주의해야** 합니다. 판매자의 평판을 항상 확인하세요. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). 또한 이전 소유자의 활동과 연관될 수 있다는 위험성도 존재합니다. Android 기기 및 운영 체제 호환성에 관한 추가 정보: @@ -168,15 +178,17 @@ Android 기기 및 운영 체제 호환성에 관한 추가 정보: Google Pixel은 Privacy Guides에서 **유일하게** 구매를 권장하는 기기입니다. Pixel 스마트폰은 현재 시중에 존재하는 어떤 Android 기기보다도 강력한 하드웨어 보안을 가지고 있습니다. 제3자 운영 체제에 대한 적절한 AVB 지원이 갖추어져 있으며, Secure Element 역할 Google 커스텀 [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) 보안 칩을 탑재하고 있습니다. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter 로고](assets/img/android/shelter.svg){ align=right } - - **Shelter**는 Android의 직장 프로필 기능을 이용해 기기에서 앱을 격리/복제할 수 있게 해주는 앱입니다. - - Shelter는 기본 파일 관리자([DocumentsUI](https://source.android.com/docs/core/architecture/modular-system/documentsui?hl=ko))를 통해 프로필 간 연락처 검색 차단 및 프로필 간 파일 공유를 지원합니다. - - [:octicons-repo-16: 저장소](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="소스 코드" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=기부 } +![Shelter 로고](assets/img/android/shelter.svg){ align=right } -!!! warning "경고" +**Shelter**는 Android의 직장 프로필 기능을 이용해 기기에서 앱을 격리/복제할 수 있게 해주는 앱입니다. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter는 기본 파일 관리자([DocumentsUI](https://source.android.com/docs/core/architecture/modular-system/documentsui?hl=ko))를 통해 프로필 간 연락처 검색 차단 및 프로필 간 파일 공유를 지원합니다. + +[:octicons-repo-16: 저장소](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="소스 코드" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=기부 } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! recommendation +
- ![Secure camera 로고](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera 로고](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera**는 프라이버시, 보안 중점 카메라 앱으로 사진, 동영상, QR 코드를 찍을 수 있습니다. 기기에서 지원하는 경우 CameraX 공급업체 확장 기능(인물 모드, HDR, 야간 모드, 얼굴 보정, 자동) 또한 지원됩니다. - - [:octicons-repo-16: 저장소](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=문서} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="소스 코드" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=기부 } - - ??? downloads "다운로드" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera 로고](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera 로고](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera**는 프라이버시, 보안 중점 카메라 앱으로 사진, 동영상, QR 코드를 찍을 수 있습니다. 기기에서 지원하는 경우 CameraX 공급업체 확장 기능(인물 모드, HDR, 야간 모드, 얼굴 보정, 자동) 또한 지원됩니다. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
주요 프라이버시 기능은 다음과 같습니다: @@ -242,50 +264,63 @@ We recommend a wide variety of Android apps throughout this site. The apps liste - 새로운 [미디어](https://developer.android.com/training/data-storage/shared/media) API를 사용하므로 [저장 공간 ](https://developer.android.com/training/data-storage)권한이 필요하지 않습니다. - 사운드 녹음을 원치 않는 한 마이크 권한은 필요하지 않습니다. -!!! note "참고" +
+

Note

- 현재 동영상 파일은 메타데이터 제거가 지원되지 않지만, 지원 예정입니다. - - 이미지 방향 메타데이터는 제거되지 않습니다. (Secure Camera 내에서) 위치 기록을 활성화할 경우, 위치 기록은 제거되지 않습니다. 추후에 제거하려면 [ExifEraser](data-redaction.md#exiferaser) 등의 외부 앱을 사용해야 합니다. +현재 동영상 파일은 메타데이터 제거가 지원되지 않지만, 지원 예정입니다. + +이미지 방향 메타데이터는 제거되지 않습니다. (Secure Camera 내에서) 위치 기록을 활성화할 경우, 위치 기록은 제거되지 않습니다. 추후에 제거하려면 [ExifEraser](data-redaction.md#exiferaser) 등의 외부 앱을 사용해야 합니다. + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer 로고](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer 로고](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer**는 [pdf.js](https://en.wikipedia.org/wiki/PDF.js) 기반 PDF 뷰어로, 어떤 권한도 필요하지 않습니다. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: 저장소](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="소스 코드" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=기부 } - - ??? downloads "다운로드" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer 로고](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer 로고](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer**는 [pdf.js](https://en.wikipedia.org/wiki/PDF.js) 기반 PDF 뷰어로, 어떤 권한도 필요하지 않습니다. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS 앱 스토어는 [GitHub](https://github.com/GrapheneOS/Apps/releases Google Play 스토어는 Google 계정 로그인이 필수적이기 때문에 프라이버시 면에서 좋지 않습니다. Aurora Store와 같은 대체 클라이언트를 사용하면 이 문제를 해결할 수 있습니다. -!!! recommendation +
- ![Aurora Store 로고](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store**는 Google 계정, Google Play 서비스, microG 없이 앱을 다운로드할 수 있는 Google Play 스토어 클라이언트입니다. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store 로고](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store**는 Google 계정, Google Play 서비스, microG 없이 앱을 다운로드할 수 있는 Google Play 스토어 클라이언트입니다. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store에서는 익명 계정 기능을 사용해 유료 앱은 다운로드 불가능합니다. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## 평가 기준 **Privacy Guides는 권장 목록의 어떠한 프로젝트와도 제휴를 맺지 않았습니다.** 객관적인 권장 목록을 제공하기 위해, [일반적인 평가 기준](about/criteria.md)에 더해 명확한 요구 사항을 정립하였습니다. 어떠한 프로젝트를 선택해 사용하기 전에, 이러한 요구 사항들을 숙지하고 여러분 스스로 조사하는 과정을 거쳐 적절한 선택을 하시기 바랍니다. -!!! example "이 단락은 최근에 만들어졌습니다" +
+

This section is new

- Privacy Guides 팀은 사이트의 모든 항목마다 명확한 평가 기준을 정립하는 중이며, 따라서 세부 내용은 변경될 수 있습니다. 평가 기준에 대해서 질문이 있다면 [포럼에서 문의](https://discuss.privacyguides.net/latest)하시기 바랍니다. (무언가가 목록에 존재하지 않다고 해서 권장 목록을 작성할 때 고려한 적이 없을 것으로 단정 짓지 마세요.) 권장 목록에 어떤 프로젝트를 추가할 때 고려하고 논의해야 할 요소는 매우 많으며, 모든 요소를 문서화하는 것은 현재 진행 중인 작업입니다. +Privacy Guides 팀은 사이트의 모든 항목마다 명확한 평가 기준을 정립하는 중이며, 따라서 세부 내용은 변경될 수 있습니다. 평가 기준에 대해서 질문이 있다면 [포럼에서 문의](https://discuss.privacyguides.net/latest)하시기 바랍니다. (무언가가 목록에 존재하지 않다고 해서 권장 목록을 작성할 때 고려한 적이 없을 것으로 단정 짓지 마세요.) 권장 목록에 어떤 프로젝트를 추가할 때 고려하고 논의해야 할 요소는 매우 많으며, 모든 요소를 문서화하는 것은 현재 진행 중인 작업입니다. + +
### 운영 체제 diff --git a/i18n/ko/calendar.md b/i18n/ko/calendar.md index 01c122be..7f8ae830 100644 --- a/i18n/ko/calendar.md +++ b/i18n/ko/calendar.md @@ -1,7 +1,7 @@ --- title: "캘린더 동기화" icon: material/calendar -description: 캘린더에는 여러분의 가장 민감한 데이터가 담겨 있습니다. 암호화가 적용된 서비스를 사용하세요. +description: Calendars contain some of your most sensitive data; use products that implement encryption at rest. cover: calendar.webp --- @@ -9,48 +9,58 @@ cover: calendar.webp ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - 여러 캘린더 및 확장된 공유 기능은 유료 구독자 전용입니다. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +여러 캘린더 및 확장된 공유 기능은 유료 구독자 전용입니다. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar**는 Proton 회원이라면 웹/모바일 클라이언트에서 사용 가능한 암호화 캘린더 서비스입니다. 모든 데이터 자동 E2EE, 공유 기능, 가져오기/내보내기 기능을 포함한 [다양한 기능](https://proton.me/support/proton-calendar-guide)이 있습니다. Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. 확장된 공유 기능은 유료 플랜 사용자 전용입니다. - - [:octicons-home-16: 홈페이지](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="프라이버시 정책" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=문서} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="소스 코드" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar**는 Proton 회원이라면 웹/모바일 클라이언트에서 사용 가능한 암호화 캘린더 서비스입니다. 모든 데이터 자동 E2EE, 공유 기능, 가져오기/내보내기 기능을 포함한 [다양한 기능](https://proton.me/support/proton-calendar-guide)이 있습니다. Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. 확장된 공유 기능은 유료 플랜 사용자 전용입니다. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Privacy Guides는 권장 목록의 어떠한 프로젝트와도 제휴를 맺지 않았습니다.** 객관적인 권장 목록을 제공하기 위해, [일반적인 평가 기준](about/criteria.md)에 더해 명확한 요구 사항을 정립하였습니다. 어떠한 프로젝트를 선택해 사용하기 전에, 이러한 요구 사항들을 숙지하고 여러분 스스로 조사하는 과정을 거쳐 적절한 선택을 하시기 바랍니다. -!!! example "이 단락은 최근에 만들어졌습니다" +
+

This section is new

- Privacy Guides 팀은 사이트의 모든 항목마다 명확한 평가 기준을 정립하는 중이며, 따라서 세부 내용은 변경될 수 있습니다. 평가 기준에 대해서 질문이 있다면 [포럼에서 문의](https://discuss.privacyguides.net/latest)하시기 바랍니다. (무언가가 목록에 존재하지 않다고 해서 권장 목록을 작성할 때 고려한 적이 없을 것으로 단정 짓지 마세요.) 권장 목록에 어떤 프로젝트를 추가할 때 고려하고 논의해야 할 요소는 매우 많으며, 모든 요소를 문서화하는 것은 현재 진행 중인 작업입니다. +Privacy Guides 팀은 사이트의 모든 항목마다 명확한 평가 기준을 정립하는 중이며, 따라서 세부 내용은 변경될 수 있습니다. 평가 기준에 대해서 질문이 있다면 [포럼에서 문의](https://discuss.privacyguides.net/latest)하시기 바랍니다. (무언가가 목록에 존재하지 않다고 해서 권장 목록을 작성할 때 고려한 적이 없을 것으로 단정 짓지 마세요.) 권장 목록에 어떤 프로젝트를 추가할 때 고려하고 논의해야 할 요소는 매우 많으며, 모든 요소를 문서화하는 것은 현재 진행 중인 작업입니다. + +
### 최소 요구 사항 diff --git a/i18n/ko/cloud.md b/i18n/ko/cloud.md index 6dc2d16b..c49cbd2a 100644 --- a/i18n/ko/cloud.md +++ b/i18n/ko/cloud.md @@ -10,29 +10,37 @@ cover: cloud.webp 이러한 대안들이 여러분의 요구에 맞지 않는 경우, 다른 클라우드 제공 업체를 [Cryptomator](encryption.md#cryptomator-cloud) 등의 암호화 소프트웨어와 함께 사용할 것을 권장합니다. **어떤** 클라우드 제공 업체든(본 목록 포함), Cryptomator를 함께 사용함으로써 제공 업체의 기본 클라이언트에서 발생할 수 있는 암호화 결함 위험성을 낮출 수 있습니다. -??? question "Nextcloud를 찾고 계신가요?" +
+Looking for Nextcloud? - Nextcloud는 자체 호스팅 파일 관리 제품군으로 [권장 목록에 존재](productivity.md)하고 있습니다. 하지만, 현재로서 저희는 제3자 Nextcloud 스토리지 제공 업체를 권장하지 않습니다. Nextcloud 내장 E2EE 기능을 일반 사용자에게 [권장하지 않기 때문](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29)입니다. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive 로고](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive**는 유명한 스위스의 암호화 이메일 서비스 제공 업체인 [Proton Mail](email.md#proton-mail)의 암호화 클라우드 스토리지 서비스입니다. - - [:octicons-home-16: 홈페이지](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="프라이버시 정책" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=문서} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="소스 코드" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive 로고](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive**는 유명한 스위스의 암호화 이메일 서비스 제공 업체인 [Proton Mail](email.md#proton-mail)의 암호화 클라우드 스토리지 서비스입니다. + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
Proton Drive 웹 어플리케이션은 [2021년에](https://proton.me/blog/security-audit-all-proton-apps) Securitum으로부터 독립적으로 감사를 받았습니다. 세부 내용은 제공되지 않았지만, Securitum 인증서에 따르면 다음과 같습니다: @@ -42,23 +50,28 @@ Proton Drive의 새로운 모바일 클라이언트는 아직 제3자에 의해 ## Tresorit -!!! recommendation +
- ![Tresorit 로고](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit**은 2011년에 설립된 스위스-헝가리의 암호화 클라우드 스토리지 제공 업체입니다. Tresorit은 스위스 국영 우편 서비스인 스위스 포스트(스위스 우체국)가 소유하고 있습니다. - - [:octicons-home-16: 홈페이지](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="프라이버시 정책" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=문서} - - ??? downloads "다운로드" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit 로고](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit**은 2011년에 설립된 스위스-헝가리의 암호화 클라우드 스토리지 제공 업체입니다. Tresorit은 스위스 국영 우편 서비스인 스위스 포스트(스위스 우체국)가 소유하고 있습니다. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit은 독립적인 보안 감사를 여러 차례 받았습니다. @@ -76,9 +89,12 @@ Tresorit은 독립적인 보안 감사를 여러 차례 받았습니다. **Privacy Guides는 권장 목록의 어떠한 프로젝트와도 제휴를 맺지 않았습니다.** 객관적인 권장 목록을 제공하기 위해, [일반적인 평가 기준](about/criteria.md)에 더해 명확한 요구 사항을 정립하였습니다. 어떠한 프로젝트를 선택해 사용하기 전에, 이러한 요구 사항들을 숙지하고 여러분 스스로 조사하는 과정을 거쳐 적절한 선택을 하시기 바랍니다. -!!! example "이 단락은 최근에 만들어졌습니다" +
+

This section is new

- Privacy Guides 팀은 사이트의 모든 항목마다 명확한 평가 기준을 정립하는 중이며, 따라서 세부 내용은 변경될 수 있습니다. 평가 기준에 대해서 질문이 있다면 [포럼에서 문의](https://discuss.privacyguides.net/latest)하시기 바랍니다. (무언가가 목록에 존재하지 않다고 해서 권장 목록을 작성할 때 고려한 적이 없을 것으로 단정 짓지 마세요.) 권장 목록에 어떤 프로젝트를 추가할 때 고려하고 논의해야 할 요소는 매우 많으며, 모든 요소를 문서화하는 것은 현재 진행 중인 작업입니다. +Privacy Guides 팀은 사이트의 모든 항목마다 명확한 평가 기준을 정립하는 중이며, 따라서 세부 내용은 변경될 수 있습니다. 평가 기준에 대해서 질문이 있다면 [포럼에서 문의](https://discuss.privacyguides.net/latest)하시기 바랍니다. (무언가가 목록에 존재하지 않다고 해서 권장 목록을 작성할 때 고려한 적이 없을 것으로 단정 짓지 마세요.) 권장 목록에 어떤 프로젝트를 추가할 때 고려하고 논의해야 할 요소는 매우 많으며, 모든 요소를 문서화하는 것은 현재 진행 중인 작업입니다. + +
### 최소 요구 사항 diff --git a/i18n/ko/email-clients.md b/i18n/ko/email-clients.md index 3a0e3cae..3321d4e5 100644 --- a/i18n/ko/email-clients.md +++ b/i18n/ko/email-clients.md @@ -1,41 +1,49 @@ --- title: "이메일 클라이언트" icon: material/email-open -description: 프라이버시 중점적이며 OpenPGP 이메일 암호화를 지원하는 이메일 클라이언트 목록입니다. +description: These email clients are privacy-respecting and support OpenPGP email encryption. cover: email-clients.webp --- 본 권장 목록의 이메일 클라이언트는 [OpenPGP](encryption.md#openpgp) 및 [OAuth(Open Authorization)](https://en.wikipedia.org/wiki/OAuth) 같은 강력한 인증을 모두 지원합니다. OAuth를 이용하면 [다중 인증](basics/multi-factor-authentication.md)으로 계정을 보호할 수 있습니다. -??? warning "이메일은 순방향 비밀성을 제공하지 않습니다." +
+Email does not provide forward secrecy - 이메일은 OpenPGP 등 종단 간 암호화(E2EE) 기술을 사용하더라도, 이메일 헤더에 [일부 메타데이터](email.md#email-metadata-overview)는 암호화되지 않은 채로 존재합니다. - - 또한 OpenPGP는 [순방향 비밀성(Forward Secrecy)](https://en.wikipedia.org/wiki/Forward_secrecy)을 지원하지 않습니다. 따라서 발신자/수신자의 개인 키가 도난당할 경우, 해당 키로 암호화된 이전 메시지가 전부 노출됩니다([개인 키를 보호하는 방법](basics/email-security.md)). 되도록이면 순방향 비밀성을 제공하는 매체를 사용하세요. - - [실시간 커뮤니케이션](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## 크로스 플랫폼 ### Thunderbird -!!! recommendation +
- ![Thunderbird 로고](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird**는 무료 오픈 소스 크로스 플랫폼 이메일 클라이언트입니다. 이메일, 뉴스그룹, 뉴스 피드, 채팅(XMPP, IRC, Twitter) 기능을 지원합니다. 이전에는 Mozilla 재단에서 개발했으며, 현재는 Thunderbird 커뮤니티에서 개발하고 있습니다. - - [:octicons-home-16: 홈페이지](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="프라이버시 정책" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=문서} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="소스 코드" } - - ??? downloads "다운로드" - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird 로고](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird**는 무료 오픈 소스 크로스 플랫폼 이메일 클라이언트입니다. 이메일, 뉴스그룹, 뉴스 피드, 채팅(XMPP, IRC, Twitter) 기능을 지원합니다. 이전에는 Mozilla 재단에서 개발했으며, 현재는 Thunderbird 커뮤니티에서 개발하고 있습니다. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### 권장 설정 @@ -60,169 +68,217 @@ cover: email-clients.webp ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail 로고](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail**은 macOS에 기본 포함되어 있으며, PGP 암호화 이메일 전송 기능을 추가하는 [GPG Suite](encryption.md#gpg-suite)를 통해 OpenPGP를 지원하도록 확장 가능합니다. - - [:octicons-home-16: 홈페이지](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="프라이버시 정책" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=문서} +![Apple Mail 로고](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail**은 macOS에 기본 포함되어 있으며, PGP 암호화 이메일 전송 기능을 추가하는 [GPG Suite](encryption.md#gpg-suite)를 통해 OpenPGP를 지원하도록 확장 가능합니다. + +[:octicons-home-16: 홈페이지](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="프라이버시 정책" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=문서} + + + +
Apple Mail은 외부 콘텐츠를 백그라운드에서 로드하거나, 완전히 차단해 발신자로부터 IP 주소를 숨길 수 있는 기능을 [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) 및 [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios)에서 제공합니다. ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail 로고](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail**은 유료 이메일 클라이언트로, 생체 인식 앱 잠금 등의 보안 기능으로 원활한 종단 간 암호화를 지원하도록 설계되었습니다. - - [:octicons-home-16: 홈페이지](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="프라이버시 정책" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=문서} - - ??? downloads "다운로드" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail 로고](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning "경고" +**Canary Mail**은 유료 이메일 클라이언트로, 생체 인식 앱 잠금 등의 보안 기능으로 원활한 종단 간 암호화를 지원하도록 설계되었습니다. - Canary Mail은 Windows 및 Android용 클라이언트를 최근 출시했지만, 저희는 해당 클라이언트가 iOS/Mac용 클라이언트만큼 안정적이진 않다고 판단하고 있습니다. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail은 Windows 및 Android용 클라이언트를 최근 출시했지만, 저희는 해당 클라이언트가 iOS/Mac용 클라이언트만큼 안정적이진 않다고 판단하고 있습니다. + +
Canay Mail은 오픈 소스가 아닙니다. iOS에서 PGP E2EE를 지원하는 이메일 클라이언트가 몇 없기 때문에 권장 목록에 등재되었습니다. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail 로고](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail**은 미니멀한 오픈 소스 이메일 앱으로, 개방형 표준(IMAP, SMTP, OpenPGP)을 사용하고 데이터 및 배터리 사용량이 적습니다. - - [:octicons-home-16: 홈페이지](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="프라이버시 정책" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=문서} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="소스 코드" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=기부 } - - ??? downloads "다운로드" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail 로고](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail**은 미니멀한 오픈 소스 이메일 앱으로, 개방형 표준(IMAP, SMTP, OpenPGP)을 사용하고 데이터 및 배터리 사용량이 적습니다. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution 로고](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** 메일, 캘린더, 연락처 기능을 통합적으로 제공하는 개인 정보 관리 애플리케이션입니다. 시작하는 데에 도움이 되는 방대한 [문서](https://help.gnome.org/users/evolution/stable/)가 존재합니다. - - [:octicons-home-16: 홈페이지](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="프라이버시 정책" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=문서} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="소스 코드" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=기부 } - - ??? downloads "다운로드" - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution 로고](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** 메일, 캘린더, 연락처 기능을 통합적으로 제공하는 개인 정보 관리 애플리케이션입니다. 시작하는 데에 도움이 되는 방대한 [문서](https://help.gnome.org/users/evolution/stable/)가 존재합니다. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail 로고](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail**은 POP3, IMAP 메일함을 모두 지원하는 메일 애플리케이션입니다. 실시간 푸시 메일은 IMAP에서만 지원합니다. - - K-9 Mail은 [공식적으로 Thunderbird 브랜드에 통합되었으며](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html), 추후 Android용 Thunderbird 클라이언트가 될 예정입니다. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail 로고](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning "경고" +**K-9 Mail**은 POP3, IMAP 메일함을 모두 지원하는 메일 애플리케이션입니다. 실시간 푸시 메일은 IMAP에서만 지원합니다. - 메일링 리스트 내 누군가에게 답장(Reply)할 때, 답장 대상에 전체 메일링 리스트가 포함될 수도 있습니다. 자세한 내용은 [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738)를 참고해 주세요. +K-9 Mail은 [공식적으로 Thunderbird 브랜드에 통합되었으며](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html), 추후 Android용 Thunderbird 클라이언트가 될 예정입니다. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +메일링 리스트 내 누군가에게 답장(Reply)할 때, 답장 대상에 전체 메일링 리스트가 포함될 수도 있습니다. 자세한 내용은 [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738)를 참고해 주세요. + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact 로고](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact**는 [KDE](https://kde.org) 프로젝트의 개인 정보 관리자(PIM) 애플리케이션입니다. 메일 클라이언트, 연락처, 일정 관리, RSS 클라이언트 기능을 제공합니다. - - [:octicons-home-16: 홈페이지](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="프라이버시 정책" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=문서} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="소스 코드" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=기부 } - - ??? downloads "다운로드" - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact 로고](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact**는 [KDE](https://kde.org) 프로젝트의 개인 정보 관리자(PIM) 애플리케이션입니다. 메일 클라이언트, 연락처, 일정 관리, RSS 클라이언트 기능을 제공합니다. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (브라우저) -!!! recommendation +
- ![Mailvelope 로고](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope**는 OpenPGP 암호화 표준에 따라 암호화된 이메일을 주고받을 수 있게 해주는 브라우저 확장 프로그램입니다. - - [:octicons-home-16: 홈페이지](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="프라이버시 정책" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=문서} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="소스 코드" } - - ??? downloads "다운로드" - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope 로고](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope**는 OpenPGP 암호화 표준에 따라 암호화된 이메일을 주고받을 수 있게 해주는 브라우저 확장 프로그램입니다. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt 로고](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt**은 Linux, BSD용 오픈 소스 CLI 메일 리더 프로그램(MUA)입니다. [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client))로부터 포크되어 기능이 추가된 프로젝트입니다. - - NeoMutt은 텍스트 기반 클라이언트로, 사용법을 익히기 매우 어렵습니다. 하지만 자유로운 커스텀이 가능합니다. - - [:octicons-home-16: 홈페이지](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=문서} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="소스 코드" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=기부 } - - ??? downloads "다운로드" - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt 로고](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt**은 Linux, BSD용 오픈 소스 CLI 메일 리더 프로그램(MUA)입니다. [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client))로부터 포크되어 기능이 추가된 프로젝트입니다. + +NeoMutt은 텍스트 기반 클라이언트로, 사용법을 익히기 매우 어렵습니다. 하지만 자유로운 커스텀이 가능합니다. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## 평가 기준 **Privacy Guides는 권장 목록의 어떠한 프로젝트와도 제휴를 맺지 않았습니다.** 객관적인 권장 목록을 제공하기 위해, [일반적인 평가 기준](about/criteria.md)에 더해 명확한 요구 사항을 정립하였습니다. 어떠한 프로젝트를 선택해 사용하기 전에, 이러한 요구 사항들을 숙지하고 여러분 스스로 조사하는 과정을 거쳐 적절한 선택을 하시기 바랍니다. -!!! example "이 단락은 최근에 만들어졌습니다" +
+

This section is new

- Privacy Guides 팀은 사이트의 모든 항목마다 명확한 평가 기준을 정립하는 중이며, 따라서 세부 내용은 변경될 수 있습니다. 평가 기준에 대해서 질문이 있다면 [포럼에서 문의](https://discuss.privacyguides.net/latest)하시기 바랍니다. (무언가가 목록에 존재하지 않다고 해서 권장 목록을 작성할 때 고려한 적이 없을 것으로 단정 짓지 마세요.) 권장 목록에 어떤 프로젝트를 추가할 때 고려하고 논의해야 할 요소는 매우 많으며, 모든 요소를 문서화하는 것은 현재 진행 중인 작업입니다. +Privacy Guides 팀은 사이트의 모든 항목마다 명확한 평가 기준을 정립하는 중이며, 따라서 세부 내용은 변경될 수 있습니다. 평가 기준에 대해서 질문이 있다면 [포럼에서 문의](https://discuss.privacyguides.net/latest)하시기 바랍니다. (무언가가 목록에 존재하지 않다고 해서 권장 목록을 작성할 때 고려한 적이 없을 것으로 단정 짓지 마세요.) 권장 목록에 어떤 프로젝트를 추가할 때 고려하고 논의해야 할 요소는 매우 많으며, 모든 요소를 문서화하는 것은 현재 진행 중인 작업입니다. + +
### 최소 요구 사항 diff --git a/i18n/ko/financial-services.md b/i18n/ko/financial-services.md index 98121b76..7f4f25d3 100644 --- a/i18n/ko/financial-services.md +++ b/i18n/ko/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: 홈페이지](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="프라이버시 정책" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=문서} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: 홈페이지](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="프라이버시 정책" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=문서} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: 홈페이지](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="프라이버시 정책" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=문서} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: 홈페이지](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="프라이버시 정책" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=문서} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Privacy Guides는 권장 목록의 어떠한 프로젝트와도 제휴를 맺지 않았습니다.** 객관적인 권장 목록을 제공하기 위해, [일반적인 평가 기준](about/criteria.md)에 더해 명확한 요구 사항을 정립하였습니다. 어떠한 프로젝트를 선택해 사용하기 전에, 이러한 요구 사항들을 숙지하고 여러분 스스로 조사하는 과정을 거쳐 적절한 선택을 하시기 바랍니다. -!!! example "이 단락은 최근에 만들어졌습니다" +
+

This section is new

- Privacy Guides 팀은 사이트의 모든 항목마다 명확한 평가 기준을 정립하는 중이며, 따라서 세부 내용은 변경될 수 있습니다. 평가 기준에 대해서 질문이 있다면 [포럼에서 문의](https://discuss.privacyguides.net/latest)하시기 바랍니다. (무언가가 목록에 존재하지 않다고 해서 권장 목록을 작성할 때 고려한 적이 없을 것으로 단정 짓지 마세요.) 권장 목록에 어떤 프로젝트를 추가할 때 고려하고 논의해야 할 요소는 매우 많으며, 모든 요소를 문서화하는 것은 현재 진행 중인 작업입니다. +Privacy Guides 팀은 사이트의 모든 항목마다 명확한 평가 기준을 정립하는 중이며, 따라서 세부 내용은 변경될 수 있습니다. 평가 기준에 대해서 질문이 있다면 [포럼에서 문의](https://discuss.privacyguides.net/latest)하시기 바랍니다. (무언가가 목록에 존재하지 않다고 해서 권장 목록을 작성할 때 고려한 적이 없을 것으로 단정 짓지 마세요.) 권장 목록에 어떤 프로젝트를 추가할 때 고려하고 논의해야 할 요소는 매우 많으며, 모든 요소를 문서화하는 것은 현재 진행 중인 작업입니다. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: 홈페이지](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="프라이버시 정책" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=문서} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: 홈페이지](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="프라이버시 정책" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=문서} + + + +
### 평가 기준 **Privacy Guides는 권장 목록의 어떠한 프로젝트와도 제휴를 맺지 않았습니다.** 객관적인 권장 목록을 제공하기 위해, [일반적인 평가 기준](about/criteria.md)에 더해 명확한 요구 사항을 정립하였습니다. 어떠한 프로젝트를 선택해 사용하기 전에, 이러한 요구 사항들을 숙지하고 여러분 스스로 조사하는 과정을 거쳐 적절한 선택을 하시기 바랍니다. -!!! example "이 단락은 최근에 만들어졌습니다" +
+

This section is new

- Privacy Guides 팀은 사이트의 모든 항목마다 명확한 평가 기준을 정립하는 중이며, 따라서 세부 내용은 변경될 수 있습니다. 평가 기준에 대해서 질문이 있다면 [포럼에서 문의](https://discuss.privacyguides.net/latest)하시기 바랍니다. (무언가가 목록에 존재하지 않다고 해서 권장 목록을 작성할 때 고려한 적이 없을 것으로 단정 짓지 마세요.) 권장 목록에 어떤 프로젝트를 추가할 때 고려하고 논의해야 할 요소는 매우 많으며, 모든 요소를 문서화하는 것은 현재 진행 중인 작업입니다. +Privacy Guides 팀은 사이트의 모든 항목마다 명확한 평가 기준을 정립하는 중이며, 따라서 세부 내용은 변경될 수 있습니다. 평가 기준에 대해서 질문이 있다면 [포럼에서 문의](https://discuss.privacyguides.net/latest)하시기 바랍니다. (무언가가 목록에 존재하지 않다고 해서 권장 목록을 작성할 때 고려한 적이 없을 것으로 단정 짓지 마세요.) 권장 목록에 어떤 프로젝트를 추가할 때 고려하고 논의해야 할 요소는 매우 많으며, 모든 요소를 문서화하는 것은 현재 진행 중인 작업입니다. + +
- [권장 암호화폐](cryptocurrency.md)로 결제할 수 있어야 합니다. - ID가 필수적이지 않아야 합니다. diff --git a/i18n/ko/router.md b/i18n/ko/router.md index 033c8644..5ff444e4 100644 --- a/i18n/ko/router.md +++ b/i18n/ko/router.md @@ -1,7 +1,7 @@ --- title: "공유기 펌웨어" icon: material/router-wireless -description: 이러한 대체 운영 체제로 여러분의 공유기(라우터) 및 Wi-Fi 액세스 포인트를 보호할 수 있습니다. +description: These alternative operating systems can be used to secure your router or Wi-Fi access point. cover: router.webp --- @@ -9,32 +9,40 @@ cover: router.webp ## OpenWrt -!!! recommendation +
- ![OpenWrt 로고](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt 로고](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt**는 Linux 기반 운영 체제입니다. 주로 임베디드 기기에서 네트워크 트래픽 라우터 용도로 사용됩니다. util-linux, uClibc, BusyBox 등을 포함하고 있습니다. 모든 구성 요소는 가정용 공유기(라우터)에 알맞게 최적화되어 있습니다. - - [:octicons-home-16: 홈페이지](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=문서} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="소스 코드" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=기부 } +![OpenWrt 로고](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt 로고](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt**는 Linux 기반 운영 체제입니다. 주로 임베디드 기기에서 네트워크 트래픽 라우터 용도로 사용됩니다. util-linux, uClibc, BusyBox 등을 포함하고 있습니다. 모든 구성 요소는 가정용 공유기(라우터)에 알맞게 최적화되어 있습니다. + +[:octicons-home-16: 홈페이지](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=문서} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="소스 코드" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=기부 } + + + +
여러분이 사용 중인 기기의 OpenWrt 지원 여부는 [하드웨어 표](https://openwrt.org/toh/start)에서 확인할 수 있습니다. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense는 일반적으로 경계 방화벽(Perimeter Firewall), 라우터, 무선 액세스 포인트, DHCP 서버, DNS 서버, VPN 엔드포인트상에 배포됩니다. - - [:octicons-home-16: 홈페이지](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=문서} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="소스 코드" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=기부 } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense는 일반적으로 경계 방화벽(Perimeter Firewall), 라우터, 무선 액세스 포인트, DHCP 서버, DNS 서버, VPN 엔드포인트상에 배포됩니다. + +[:octicons-home-16: 홈페이지](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=문서} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="소스 코드" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=기부 } + + + +
OPNsense는 본래 [pfSense](https://en.wikipedia.org/wiki/PfSense)로부터 포크되어 개발됐으며, 두 프로젝트 모두 고가의 상용 방화벽에서만 볼 수 있는 기능을 제공하는 신뢰성 높은 무료 방화벽 배포판으로 유명합니다. 2015년 출시된 OPNsense의 개발자들은, pfSense의 여러 보안 및 코드 품질 문제와 Netgate가 pfSense의 대주주가 되면서 생긴 향후 프로젝트 방향의 우려로 인해 프로젝트를 포크하였다고 [밝혔습니다](https://docs.opnsense.org/history/thefork.html). @@ -42,9 +50,12 @@ OPNsense는 본래 [pfSense](https://en.wikipedia.org/wiki/PfSense)로부터 포 **Privacy Guides는 권장 목록의 어떠한 프로젝트와도 제휴를 맺지 않았습니다.** 객관적인 권장 목록을 제공하기 위해, [일반적인 평가 기준](about/criteria.md)에 더해 명확한 요구 사항을 정립하였습니다. 어떠한 프로젝트를 선택해 사용하기 전에, 이러한 요구 사항들을 숙지하고 여러분 스스로 조사하는 과정을 거쳐 적절한 선택을 하시기 바랍니다. -!!! example "이 단락은 최근에 만들어졌습니다" +
+

This section is new

- Privacy Guides 팀은 사이트의 모든 항목마다 명확한 평가 기준을 정립하는 중이며, 따라서 세부 내용은 변경될 수 있습니다. 평가 기준에 대해서 질문이 있다면 [포럼에서 문의](https://discuss.privacyguides.net/latest)하시기 바랍니다. (무언가가 목록에 존재하지 않다고 해서 권장 목록을 작성할 때 고려한 적이 없을 것으로 단정 짓지 마세요.) 권장 목록에 어떤 프로젝트를 추가할 때 고려하고 논의해야 할 요소는 매우 많으며, 모든 요소를 문서화하는 것은 현재 진행 중인 작업입니다. +Privacy Guides 팀은 사이트의 모든 항목마다 명확한 평가 기준을 정립하는 중이며, 따라서 세부 내용은 변경될 수 있습니다. 평가 기준에 대해서 질문이 있다면 [포럼에서 문의](https://discuss.privacyguides.net/latest)하시기 바랍니다. (무언가가 목록에 존재하지 않다고 해서 권장 목록을 작성할 때 고려한 적이 없을 것으로 단정 짓지 마세요.) 권장 목록에 어떤 프로젝트를 추가할 때 고려하고 논의해야 할 요소는 매우 많으며, 모든 요소를 문서화하는 것은 현재 진행 중인 작업입니다. + +
- 오픈 소스여야 합니다. - 정기적으로 업데이트를 받아야 합니다. diff --git a/i18n/ku-IQ/android.md b/i18n/ku-IQ/android.md index 9445ab8e..2246c89a 100644 --- a/i18n/ku-IQ/android.md +++ b/i18n/ku-IQ/android.md @@ -1,8 +1,8 @@ --- meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" -title: "ئەندرۆید" +title: "Android" icon: 'simple/android' -description: 'دەتوانیت سیستەمی کارپێکردن سەر تەلەفۆنی ئەندرۆیدەکەت بگۆڕیت بۆ ئەم جێگرەوانەی، کە پارێزراو و ڕێزگرن لە تایبەتمەندێتی.' +description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: - @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. +End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** is the best choice when it comes to privacy and security. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** is the best choice when it comes to privacy and security. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Operating Systems diff --git a/i18n/ku-IQ/calendar.md b/i18n/ku-IQ/calendar.md index 07671ab9..fd26697b 100644 --- a/i18n/ku-IQ/calendar.md +++ b/i18n/ku-IQ/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/ku-IQ/cloud.md b/i18n/ku-IQ/cloud.md index 9d15aa37..34b98b3d 100644 --- a/i18n/ku-IQ/cloud.md +++ b/i18n/ku-IQ/cloud.md @@ -10,29 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "Looking for Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Requirements diff --git a/i18n/ku-IQ/email-clients.md b/i18n/ku-IQ/email-clients.md index 4632b404..8ff4a1f0 100644 --- a/i18n/ku-IQ/email-clients.md +++ b/i18n/ku-IQ/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Recommended Configuration @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/ku-IQ/financial-services.md b/i18n/ku-IQ/financial-services.md index 6cedefcb..60641cd0 100644 --- a/i18n/ku-IQ/financial-services.md +++ b/i18n/ku-IQ/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/ku-IQ/router.md b/i18n/ku-IQ/router.md index 8b814e6e..870cd79e 100644 --- a/i18n/ku-IQ/router.md +++ b/i18n/ku-IQ/router.md @@ -9,32 +9,40 @@ Below are a few alternative operating systems, that can be used on routers, Wi-F ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } + + + +
You can consult OpenWrt's [table of hardware](https://openwrt.org/toh/start) to check if your device is supported. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } + + + +
OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.org/wiki/PfSense), and both projects are noted for being free and reliable firewall distributions which offer features often only found in expensive commercial firewalls. Launched in 2015, the developers of OPNsense [cited](https://docs.opnsense.org/history/thefork.html) a number of security and code-quality issues with pfSense which they felt necessitated a fork of the project, as well as concerns about Netgate's majority acquisition of pfSense and the future direction of the pfSense project. @@ -42,9 +50,12 @@ OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.or **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Must be open source. - Must receive regular updates. diff --git a/i18n/nl/android.md b/i18n/nl/android.md index b9d8804a..1cfe7521 100644 --- a/i18n/nl/android.md +++ b/i18n/nl/android.md @@ -1,14 +1,14 @@ --- -meta_title: "Android-aanbevelingen: GrapheneOS en DivestOS - Privacy Guides" +meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" title: "Android" icon: 'simple/android' -description: Je kunt het besturingssysteem op jouw Android-telefoon vervangen door deze veilige en privacy respecterende alternatieven. +description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: - "@context": http://schema.org "@type": WebPage - name: Privé Android besturingssystemen + name: Private Android Operating Systems url: "./" - "@context": http://schema.org @@ -95,26 +95,31 @@ Dit zijn de Android-besturingssystemen, apparaten en apps die wij aanbevelen om Wij raden je aan een van deze aangepaste Android-besturingssystemen op jouw toestel te installeren, in volgorde van voorkeur, afhankelijk van de compatibiliteit van jouw toestel met deze besturingssystemen. -!!! note +
+

Note

- End-of-life apparaten (zoals GrapheneOS of CalyxOS's apparaten met "uitgebreide ondersteuning") beschikken niet over volledige beveiligingspatches (firmware-updates) omdat de OEM de ondersteuning heeft stopgezet. Deze apparaten kunnen niet als volledig veilig worden beschouwd, ongeacht de geïnstalleerde software. +End-of-life apparaten (zoals GrapheneOS of CalyxOS's apparaten met "uitgebreide ondersteuning") beschikken niet over volledige beveiligingspatches (firmware-updates) omdat de OEM de ondersteuning heeft stopgezet. Deze apparaten kunnen niet als volledig veilig worden beschouwd, ongeacht de geïnstalleerde software. + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** is de beste keuze als het gaat om privacy en veiligheid. - - GrapheneOS biedt extra [beveiligingsversteviging](https://en.wikipedia.org/wiki/Hardening_(computing)) en privacyverbeteringen. Het heeft een [geharde geheugentoewijzer](https://github.com/GrapheneOS/hardened_malloc), netwerk- en sensormachtigingen, en diverse andere [beveiligingskenmerken](https://grapheneos.org/features). GrapheneOS wordt ook geleverd met volledige firmware-updates en ondertekende builds, dus geverifieerd opstarten wordt volledig ondersteund. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacybeleid" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentatie} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Broncode" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Bijdragen } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** is de beste keuze als het gaat om privacy en veiligheid. + +GrapheneOS biedt extra [beveiligingsversteviging](https://en.wikipedia.org/wiki/Hardening_(computing)) en privacyverbeteringen. Het heeft een [geharde geheugentoewijzer](https://github.com/GrapheneOS/hardened_malloc), netwerk- en sensormachtigingen, en diverse andere [beveiligingskenmerken](https://grapheneos.org/features). GrapheneOS wordt ook geleverd met volledige firmware-updates en ondertekende builds, dus geverifieerd opstarten wordt volledig ondersteund. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacybeleid" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentatie} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Broncode" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Bijdragen } + +
GrapheneOS ondersteunt [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), die draait [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) volledig sandboxed als elke andere gewone app. Dit betekent dat je kunt profiteren van de meeste Google Play-services, zoals [pushmeldingen](https://firebase.google.com/docs/cloud-messaging/), terwijl je volledige controle hebt over hun machtigingen en toegang, en terwijl je ze bevat in een specifiek [werkprofiel](os/android-overview.md#work-profile) of [gebruikersprofiel](os/android-overview.md#user-profiles) van jouw keuze. @@ -124,19 +129,21 @@ Google Pixel-telefoons zijn de enige apparaten die momenteel voldoen aan Graphen ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is een soft-fork van [LineageOS](https://lineageos.org/). - DivestOS erft veel [ondersteunde apparaten](https://divestos.org/index.php?page=devices&base=LineageOS) van LineageOS. Het heeft ondertekende builds, waardoor het mogelijk is om [geverifieerde boot](https://source.android.com/security/verifiedboot) te hebben op sommige niet-Pixel apparaten. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is een soft-fork van [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. Het heeft ondertekende builds, waardoor het mogelijk is om [geverifieerde boot](https://source.android.com/security/verifiedboot) te hebben op sommige niet-Pixel apparaten. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS heeft geautomatiseerde kernel kwetsbaarheden ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), minder propriëtaire blobs, en een aangepaste [hosts](https://divested.dev/index.php?page=dnsbl) bestand. Zijn geharde WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), maakt [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) mogelijk voor alle architecturen en [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), en ontvangt out-of-band updates. DivestOS bevat ook kernelpatches van GrapheneOS en schakelt alle beschikbare kernelbeveiligingsfuncties in via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). Alle kernels nieuwer dan versie 3.4 bevatten volledige pagina [sanitization](https://lwn.net/Articles/334747/) en alle ~22 Clang-gecompileerde kernels hebben [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) ingeschakeld. @@ -144,11 +151,14 @@ DivestOS implementeert enkele systeemhardingspatches die oorspronkelijk voor Gra DivestOS gebruikt F-Droid als standaard app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. Voor andere apps gelden nog steeds onze aanbevolen methoden om ze te verkrijgen. -!!! warning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) en kwaliteitscontrole varieert tussen de apparaten die het ondersteunt. We raden nog steeds GrapheneOS aan, afhankelijk van de compatibiliteit van uw toestel. Voor andere apparaten is DivestOS een goed alternatief. - - Niet alle ondersteunde apparaten hebben geverifieerde boot, en sommige doen het beter dan andere. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) en kwaliteitscontrole varieert tussen de apparaten die het ondersteunt. We raden nog steeds GrapheneOS aan, afhankelijk van de compatibiliteit van uw toestel. Voor andere apparaten is DivestOS een goed alternatief. + +Niet alle ondersteunde apparaten hebben geverifieerde boot, en sommige doen het beter dan andere. + +
## Android-apparaten @@ -156,7 +166,7 @@ Wanneer je een apparaat koopt, raden wij je aan er een zo nieuw als mogelijk te Vermijd het kopen van telefoons van jouw mobiele provider. Deze hebben vaak een **vergrendelde bootloader** en bieden geen ondersteuning voor [OEM-ontgrendeling](https://source.android.com/devices/bootloader/locking_unlocking). Deze telefoonvarianten voorkomen dat je enige vorm van alternatieve Android-distributie installeert. -Wees zeer **voorzichtig** met het kopen van tweedehands telefoons van online marktplaatsen. Controleer altijd de reputatie van de verkoper. Als het apparaat is gestolen, is het mogelijk [IMEI geblacklist](https://www.gsma.com/security/resources/imei-blacklisting/) is. Er is ook een risico dat je in verband wordt gebracht met de activiteiten van de vorige eigenaar. +Wees zeer **voorzichtig** met het kopen van tweedehands telefoons van online marktplaatsen. Controleer altijd de reputatie van de verkoper. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). Er is ook een risico dat je in verband wordt gebracht met de activiteiten van de vorige eigenaar. Nog een paar tips met betrekking tot Android toestellen en compatibiliteit van het besturingssysteem: @@ -168,15 +178,17 @@ Nog een paar tips met betrekking tot Android toestellen en compatibiliteit van h Google Pixel-telefoons zijn de **enige** toestellen die we aanraden om te kopen. Pixel-telefoons hebben een sterkere hardwarebeveiliging dan alle andere Android-toestellen die momenteel op de markt zijn, dankzij de juiste AVB-ondersteuning voor besturingssystemen van derden en Google's aangepaste [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) -beveiligingschips die functioneren als het Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel**-apparaten staan bekend om hun goede beveiliging en goede ondersteuning van [Verified Boot](https://source.android.com/security/verifiedboot), zelfs bij het installeren van aangepaste besturingssystemen. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel**-apparaten staan bekend om hun goede beveiliging en goede ondersteuning van [Verified Boot](https://source.android.com/security/verifiedboot), zelfs bij het installeren van aangepaste besturingssystemen. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements zoals de Titan M2 zijn beperkter dan de Trusted Execution Environment van de processor die door de meeste andere telefoons gebruikt wordt, omdat ze alleen gebruikt worden voor geheimen opslag, hardware attestatie, en snelheidsbeperking van het invoeren van wachtwoorden, niet voor het draaien van "vertrouwde" programma's. Telefoons zonder een Secure Element moeten de TEE gebruiken voor *alle* van deze functies. Dat leidt tot een groter aanvalsoppervlak. @@ -198,43 +210,53 @@ Wij bevelen op deze site een groot aantal Android-apps aan. De hier vermelde app ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is een app waarmee je gebruik kunt maken van de functie Werkprofiel van Android om apps op uw apparaat te isoleren of te dupliceren. - - Shelter ondersteunt het blokkeren van het zoeken naar contacten tussen profielen en het delen van bestanden tussen profielen via de standaard bestandsbeheerder ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is een app waarmee je gebruik kunt maken van de functie Werkprofiel van Android om apps op uw apparaat te isoleren of te dupliceren. - Shelter wordt aanbevolen boven [Insular](https://secure-system.gitlab.io/Insular/) en [Island](https://github.com/oasisfeng/island) omdat het [blokkeren van contact zoeken](https://secure-system.gitlab.io/Insular/faq.html) ondersteunt. - - Wanneer je Shelter gebruikt, stelt je jouw volledige vertrouwen in de ontwikkelaar, aangezien Shelter optreedt als [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) voor het werkprofiel en uitgebreide toegang heeft tot de gegevens die erin zijn opgeslagen. +Shelter ondersteunt het blokkeren van het zoeken naar contacten tussen profielen en het delen van bestanden tussen profielen via de standaard bestandsbeheerder ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter wordt aanbevolen boven [Insular](https://secure-system.gitlab.io/Insular/) en [Island](https://github.com/oasisfeng/island) omdat het [blokkeren van contact zoeken](https://secure-system.gitlab.io/Insular/faq.html) ondersteunt. + +Wanneer je Shelter gebruikt, stelt je jouw volledige vertrouwen in de ontwikkelaar, aangezien Shelter optreedt als [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) voor het werkprofiel en uitgebreide toegang heeft tot de gegevens die erin zijn opgeslagen. + +
### Secure Camera -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is een camera-app gericht op privacy en veiligheid die afbeeldingen, video's en QR-codes kan vastleggen. De uitbreidingen van CameraX (Portret, HDR, Nachtzicht, Gezichtsretouche en Auto) worden ook ondersteund op beschikbare toestellen. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentatie} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Broncode" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Bijdrage leveren } - - ??? downloads "Downloaden" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is een camera-app gericht op privacy en veiligheid die afbeeldingen, video's en QR-codes kan vastleggen. De uitbreidingen van CameraX (Portret, HDR, Nachtzicht, Gezichtsretouche en Auto) worden ook ondersteund op beschikbare toestellen. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
De belangrijkste privacyfuncties zijn: @@ -242,50 +264,63 @@ De belangrijkste privacyfuncties zijn: - Gebruik van de nieuwe [Media](https://developer.android.com/training/data-storage/shared/media) API, daarom zijn [opslagmachtigingen](https://developer.android.com/training/data-storage) niet vereist - Microfoontoestemming niet vereist, tenzij je geluid wilt opnemen -!!! note +
+

Note

- Metadata worden momenteel niet verwijderd uit videobestanden, maar dat is wel de bedoeling. - - De metadata over de beeldoriëntatie worden niet gewist. Als je gps locatie inschakelt (in Secure camera), wordt deze **niet** verwijderd. Als je dat later wilt verwijderen moet je een externe app gebruiken zoals [ExifEraser](data-redaction.md#exiferaser). +Metadata worden momenteel niet verwijderd uit videobestanden, maar dat is wel de bedoeling. + +De metadata over de beeldoriëntatie worden niet gewist. Als je gps locatie inschakelt (in Secure camera), wordt deze **niet** verwijderd. Als je dat later wilt verwijderen moet je een externe app gebruiken zoals [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is een PDF-viewer gebaseerd op [pdf.js](https://en.wikipedia.org/wiki/PDF.js) die geen rechten vereist. De PDF wordt ingevoerd in een [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_ontwikkeling)) [webview](https://developer.android.com/guide/webapps/webview). Dit betekent dat er niet direct toestemming nodig is om toegang te krijgen tot inhoud of bestanden. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) wordt gebruikt om af te dwingen dat de JavaScript en styling eigenschappen binnen het WebView volledig statische inhoud zijn. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Bijdragen } - - ??? downloads "Downloaden" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is een PDF-viewer gebaseerd op [pdf.js](https://en.wikipedia.org/wiki/PDF.js) die geen rechten vereist. De PDF wordt ingevoerd in een [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_ontwikkeling)) [webview](https://developer.android.com/guide/webapps/webview). Dit betekent dat er niet direct toestemming nodig is om toegang te krijgen tot inhoud of bestanden. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) wordt gebruikt om af te dwingen dat de JavaScript en styling eigenschappen binnen het WebView volledig statische inhoud zijn. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Het verkrijgen van Applicaties ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ De app store van GrapheneOS is beschikbaar op [GitHub](https://github. com/Graph De Google Play Store vereist een Google-account om in te loggen, wat de privacy niet ten goede komt. Je kunt dit omzeilen door een alternatieve client te gebruiken, zoals Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is een Google Play Store-client waarvoor geen Google-account, Google Play Services of microG nodig is om apps te downloaden. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads "Downloaden" - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is een Google Play Store-client waarvoor geen Google-account, Google Play Services of microG nodig is om apps te downloaden. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Met de Aurora Store kun je geen betaalde apps downloaden met hun anonieme accountfunctie. Je kunt optioneel inloggen met jouw Google-account bij de Aurora Store om apps te downloaden die je hebt gekocht, waardoor Google toegang krijgt tot de lijst van apps die je hebt geïnstalleerd, maar je profiteert nog steeds van het feit dat je niet de volledige Google Play-client en Google Play Services of microG op jouw toestel nodig hebt. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In sommige zeldzame gevallen verspreidt de ontwikkelaar van een app deze alleen via F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is hier een voorbeeld van). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In sommige zeldzame gevallen verspreidt de ontwikkelaar van een app deze alleen via F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is hier een voorbeeld van). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Wij zijn niet verbonden aan de projecten die wij aanbevelen.** Naast [onze standaardcriteria](about/criteria.md)hebben wij een duidelijke reeks eisen ontwikkeld om objectieve aanbevelingen te kunnen doen. Wij stellen voor dat je jezelf vertrouwd maakt met deze lijst voordat je een project kiest, en jouw eigen onderzoek uitvoert om er zeker van te zijn dat je de juiste keuze maakt. -!!! example "Deze sectie is nieuw" +
+

This section is new

- We werken aan het vaststellen van gedefinieerde criteria voor elk deel van onze site, en dit kan onderhevig zijn aan verandering. Als je vragen hebt over onze criteria, stel ze dan [op ons forum](https://discuss.privacyguides.net/latest) en neem niet aan dat we iets niet in overweging hebben genomen bij het opstellen van onze aanbevelingen als het hier niet vermeld staat. Er zijn veel factoren die worden overwogen en besproken wanneer wij een project aanbevelen, en het documenteren van elke factor is een werk in uitvoering. +We werken aan het vaststellen van gedefinieerde criteria voor elk deel van onze site, en dit kan onderhevig zijn aan verandering. Als je vragen hebt over onze criteria, stel ze dan [op ons forum](https://discuss.privacyguides.net/latest) en neem niet aan dat we iets niet in overweging hebben genomen bij het opstellen van onze aanbevelingen als het hier niet vermeld staat. Er zijn veel factoren die worden overwogen en besproken wanneer wij een project aanbevelen, en het documenteren van elke factor is een werk in uitvoering. + +
### Besturingssystemen diff --git a/i18n/nl/calendar.md b/i18n/nl/calendar.md index a9b89a72..490820c6 100644 --- a/i18n/nl/calendar.md +++ b/i18n/nl/calendar.md @@ -9,48 +9,58 @@ Kalenders en contactpersonen bevatten enkele van jouw gevoeligste gegevens; gebr ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Meerdere kalenders en uitgebreide functionaliteit voor delen zijn beperkt tot betalende abonnees. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Meerdere kalenders en uitgebreide functionaliteit voor delen zijn beperkt tot betalende abonnees. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is een versleutelde kalenderdienst die beschikbaar is voor Proton-leden via web- of mobiele clients. Functies zijn onder meer: automatische E2EE van alle gegevens, functies voor delen, import/export-functionaliteit, en [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. De uitgebreide functionaliteit voor delen is ook beperkt tot betaalde abonnees. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentatie} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Broncode" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is een versleutelde kalenderdienst die beschikbaar is voor Proton-leden via web- of mobiele clients. Functies zijn onder meer: automatische E2EE van alle gegevens, functies voor delen, import/export-functionaliteit, en [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. De uitgebreide functionaliteit voor delen is ook beperkt tot betaalde abonnees. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Wij zijn niet verbonden aan de projecten die wij aanbevelen.** Naast [onze standaardcriteria](about/criteria.md)hebben wij een duidelijke reeks eisen ontwikkeld om objectieve aanbevelingen te kunnen doen. Wij stellen voor dat je jezelf vertrouwd maakt met deze lijst voordat je een project kiest, en jouw eigen onderzoek uitvoert om er zeker van te zijn dat je de juiste keuze maakt. -!!! example "Deze sectie is nieuw" +
+

This section is new

- We werken aan het vaststellen van gedefinieerde criteria voor elk deel van onze site, en dit kan onderhevig zijn aan verandering. Als je vragen hebt over onze criteria, stel ze dan [op ons forum](https://discuss.privacyguides.net/latest) en neem niet aan dat we iets niet in overweging hebben genomen bij het opstellen van onze aanbevelingen als het hier niet vermeld staat. Er zijn veel factoren die worden overwogen en besproken wanneer wij een project aanbevelen, en het documenteren van elke factor is een werk in uitvoering. +We werken aan het vaststellen van gedefinieerde criteria voor elk deel van onze site, en dit kan onderhevig zijn aan verandering. Als je vragen hebt over onze criteria, stel ze dan [op ons forum](https://discuss.privacyguides.net/latest) en neem niet aan dat we iets niet in overweging hebben genomen bij het opstellen van onze aanbevelingen als het hier niet vermeld staat. Er zijn veel factoren die worden overwogen en besproken wanneer wij een project aanbevelen, en het documenteren van elke factor is een werk in uitvoering. + +
### Minimum kwalificaties diff --git a/i18n/nl/cloud.md b/i18n/nl/cloud.md index 0e3bbd2f..d9104280 100644 --- a/i18n/nl/cloud.md +++ b/i18n/nl/cloud.md @@ -10,29 +10,37 @@ Veel aanbieders van cloud-opslag eisen jouw volledige vertrouwen dat zij niet in Als deze alternatieven niet aan jouw behoeften voldoen, raden wij je aan te kijken naar het gebruik van encryptiesoftware zoals [Cryptomator](encryption.md#cryptomator-cloud) met een andere cloud provider. Het gebruik van Cryptomator in combinatie met **elke** cloud provider (inclusief deze) kan een goed idee zijn om het risico van versleutelingsfouten in de native clients van een provider te verminderen. -??? question "Op zoek naar Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [nog steeds een aanbevolen tool](productivity.md) voor het zelf hosten van een bestandsbeheersuite, maar we bevelen momenteel geen opslagproviders van derden aan, omdat we de ingebouwde E2EE-functionaliteit van Nextcloud niet aanbevelen voor thuisgebruikers. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is een E2EE algemene bestandsopslagdienst van de populaire versleutelde e-mailprovider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is een E2EE algemene bestandsopslagdienst van de populaire versleutelde e-mailprovider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
De Proton Drive webapplicatie is onafhankelijk gecontroleerd door Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), volledige details werden niet beschikbaar gesteld, maar in de verklaring van Securitum staat: @@ -42,23 +50,28 @@ De gloednieuwe mobiele klanten van Proton Drive zijn nog niet publiekelijk gecon ## Tresorit -!!! recommendation +
- Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is een Zwitsers-Hongaarse aanbieder van versleutelde cloud-opslag, opgericht in 2011. Tresorit is eigendom van de Zwitserse Post, de nationale postdienst van Zwitserland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is een Zwitsers-Hongaarse aanbieder van versleutelde cloud-opslag, opgericht in 2011. Tresorit is eigendom van de Zwitserse Post, de nationale postdienst van Zwitserland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit heeft een aantal onafhankelijke beveiligingsaudits ontvangen: @@ -76,9 +89,12 @@ Ze hebben ook het Digital Trust Label ontvangen, een certificering van het [Swis **Wij zijn niet verbonden aan de projecten die wij aanbevelen.** Naast [onze standaardcriteria](about/criteria.md)hebben wij een duidelijke reeks eisen ontwikkeld om objectieve aanbevelingen te kunnen doen. Wij stellen voor dat je jezelf vertrouwd maakt met deze lijst voordat je een project kiest, en jouw eigen onderzoek uitvoert om er zeker van te zijn dat je de juiste keuze maakt. -!!! example "Deze sectie is nieuw" +
+

This section is new

- We werken aan het vaststellen van gedefinieerde criteria voor elk deel van onze site, en dit kan onderhevig zijn aan verandering. Als je vragen hebt over onze criteria, stel ze dan [op ons forum](https://discuss.privacyguides.net/latest) en neem niet aan dat we iets niet in overweging hebben genomen bij het opstellen van onze aanbevelingen als het hier niet vermeld staat. Er zijn veel factoren die worden overwogen en besproken wanneer wij een project aanbevelen, en het documenteren van elke factor is een werk in uitvoering. +We werken aan het vaststellen van gedefinieerde criteria voor elk deel van onze site, en dit kan onderhevig zijn aan verandering. Als je vragen hebt over onze criteria, stel ze dan [op ons forum](https://discuss.privacyguides.net/latest) en neem niet aan dat we iets niet in overweging hebben genomen bij het opstellen van onze aanbevelingen als het hier niet vermeld staat. Er zijn veel factoren die worden overwogen en besproken wanneer wij een project aanbevelen, en het documenteren van elke factor is een werk in uitvoering. + +
### Minimale vereisten diff --git a/i18n/nl/email-clients.md b/i18n/nl/email-clients.md index c3d6123f..82888ec4 100644 --- a/i18n/nl/email-clients.md +++ b/i18n/nl/email-clients.md @@ -1,41 +1,49 @@ --- title: "Email clients" icon: material/email-open -description: Deze e-mailclients respecteren de privacy en ondersteunen OpenPGP e-mail versleuteling. +description: These email clients are privacy-respecting and support OpenPGP email encryption. cover: email-clients.webp --- Onze aanbevelingslijst bevat e-mailcliënten die zowel [OpenPGP](encryption.md#openpgp) als sterke authenticatie ondersteunen, zoals [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). Met OAuth kunt u [Multi-Factor Authentication](basics/multi-factor-authentication.md) gebruiken en accountdiefstal voorkomen. -??? warning "E-mail biedt geen forward secrecy" +
+Email does not provide forward secrecy - Bij gebruik van end-to-end encryptie (E2EE) technologie zoals OpenPGP, zal e-mail nog steeds [enkele metadata](email.md#email-metadata-overzicht) bevatten die niet versleuteld zijn in de header van de e-mail. - - OpenPGP ondersteunt ook geen [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), wat betekent dat als uw of de geadresseerde's private sleutel ooit wordt gestolen, alle voorgaande berichten die ermee zijn versleuteld zullen worden blootgelegd: [How do I protect my private keys?](basics/email-security.md) Overweeg het gebruik van een medium dat forward secrecy biedt: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird-logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is een gratis, open-source, cross-platform email, nieuwsgroep, nieuwsfeed, en chat (XMPP, IRC, Twitter) client ontwikkeld door de Thunderbird gemeenschap, en voorheen door de Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacybeleid" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentatie} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Broncode" } - - ??? downloads "Downloaden" - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird-logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is een gratis, open-source, cross-platform email, nieuwsgroep, nieuwsfeed, en chat (XMPP, IRC, Twitter) client ontwikkeld door de Thunderbird gemeenschap, en voorheen door de Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Aanbevolen configuratie @@ -60,169 +68,217 @@ Deze opties zijn te vinden in :material-menu: → **Instellingen** → **Privacy ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail-logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is opgenomen in macOS en kan worden uitgebreid met OpenPGP-ondersteuning met [GPG Suite](/encryption/#gpg-suite), waarmee de mogelijkheid wordt toegevoegd om versleutelde e-mail te versturen. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail-logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is opgenomen in macOS en kan worden uitgebreid met OpenPGP-ondersteuning met [GPG Suite](/encryption/#gpg-suite), waarmee de mogelijkheid wordt toegevoegd om versleutelde e-mail te versturen. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail heeft de mogelijkheid om inhoud op afstand op de achtergrond te laden of volledig te blokkeren en jouw IP-adres te verbergen voor afzenders op [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) en [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail-logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is een betaalde e-mailclient die is ontworpen om end-to-end versleuteling naadloos te laten verlopen met beveiligingsfuncties zoals een biometrische app-vergrendeling. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacybeleid" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentatie} - - ??? downloads "Downloaden" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail-logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is een betaalde e-mailclient die is ontworpen om end-to-end versleuteling naadloos te laten verlopen met beveiligingsfuncties zoals een biometrische app-vergrendeling. - Canary Mail heeft pas onlangs een Windows- en Android-client uitgebracht, hoewel die volgens ons niet zo stabiel zijn als hun iOS- en Mac-tegenhangers. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail heeft pas onlangs een Windows- en Android-client uitgebracht, hoewel die volgens ons niet zo stabiel zijn als hun iOS- en Mac-tegenhangers. + +
Canary Mail is closed-source. We raden het aan omdat er maar weinig keuzes zijn voor e-mailclients op iOS die PGP E2EE ondersteunen. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is een minimale, open-source e-mail app, die gebruik maakt van open standaarden (IMAP, SMTP, OpenPGP) met een laag data- en batterijverbruik. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacybeleid" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentatie} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Broncode" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Bijdragen } - - ??? downloads "Downloaden" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is een minimale, open-source e-mail app, die gebruik maakt van open standaarden (IMAP, SMTP, OpenPGP) met een laag data- en batterijverbruik. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### Gnome evolutie (Gnome) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is een applicatie voor het beheer van persoonlijke informatie die geïntegreerde mail-, agenda- en adresboekfuncties biedt. Evolution heeft uitgebreide [documentation](https://help.gnome.org/users/evolution/stable/) om u op weg te helpen. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacybeleid" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentatie} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Broncode" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Bijdragen } - - ??? downloads "Downloaden" - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is een applicatie voor het beheer van persoonlijke informatie die geïntegreerde mail-, agenda- en adresboekfuncties biedt. Evolution heeft uitgebreide [documentation](https://help.gnome.org/users/evolution/stable/) om u op weg te helpen. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is een onafhankelijke mail-applicatie die zowel POP3 als IMAP mailboxen ondersteunt, maar alleen push mail voor IMAP ondersteunt. - - In de toekomst zal K-9 Mail de [officieel gemerkte](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client voor Android zijn. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is een onafhankelijke mail-applicatie die zowel POP3 als IMAP mailboxen ondersteunt, maar alleen push mail voor IMAP ondersteunt. - Bij het beantwoorden van iemand op een mailinglijst kan de optie "beantwoorden" ook de mailinglijst omvatten. Zie voor meer informatie [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In de toekomst zal K-9 Mail de [officieel gemerkte](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client voor Android zijn. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +Bij het beantwoorden van iemand op een mailinglijst kan de optie "beantwoorden" ook de mailinglijst omvatten. Zie voor meer informatie [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is een persoonlijke informatiemanager (PIM) applicatie van het [KDE](https://kde.org) project. Het biedt een mail client, adresboek, organizer en RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacybeleid" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentatie} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Broncode" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Bijdragen } - - ??? downloads "Downloaden" - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is een persoonlijke informatiemanager (PIM) applicatie van het [KDE](https://kde.org) project. Het biedt een mail client, adresboek, organizer en RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is een browser extensie die de uitwisseling van versleutelde e-mails mogelijk maakt volgens de OpenPGP encryptie standaard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacybeleid" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Broncode} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Bijdragen" } - - ??? downloads "Downloaden" - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is een browser extensie die de uitwisseling van versleutelde e-mails mogelijk maakt volgens de OpenPGP encryptie standaard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is een open-source command line mail reader (of MUA) voor Linux en BSD. Het is een vork van [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) met toegevoegde mogelijkheden. - - NeoMutt is een tekst-gebaseerde client die een steile leercurve heeft. Het is echter zeer aanpasbaar. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentatie} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Broncode" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Bijdragen } - - ??? downloads "Downloaden" - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is een open-source command line mail reader (of MUA) voor Linux en BSD. Het is een vork van [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) met toegevoegde mogelijkheden. + +NeoMutt is een tekst-gebaseerde client die een steile leercurve heeft. Het is echter zeer aanpasbaar. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Wij zijn niet verbonden aan de projecten die wij aanbevelen.** Naast [onze standaardcriteria](about/criteria.md)hebben wij een duidelijke reeks eisen ontwikkeld om objectieve aanbevelingen te kunnen doen. Wij stellen voor dat je jezelf vertrouwd maakt met deze lijst voordat je een project kiest, en jouw eigen onderzoek uitvoert om er zeker van te zijn dat je de juiste keuze maakt. -!!! example "Deze sectie is nieuw" +
+

This section is new

- We werken aan het vaststellen van gedefinieerde criteria voor elk deel van onze site, en dit kan onderhevig zijn aan verandering. Als je vragen hebt over onze criteria, stel ze dan [op ons forum](https://discuss.privacyguides.net/latest) en neem niet aan dat we iets niet in overweging hebben genomen bij het opstellen van onze aanbevelingen als het hier niet vermeld staat. Er zijn veel factoren die worden overwogen en besproken wanneer wij een project aanbevelen, en het documenteren van elke factor is een werk in uitvoering. +We werken aan het vaststellen van gedefinieerde criteria voor elk deel van onze site, en dit kan onderhevig zijn aan verandering. Als je vragen hebt over onze criteria, stel ze dan [op ons forum](https://discuss.privacyguides.net/latest) en neem niet aan dat we iets niet in overweging hebben genomen bij het opstellen van onze aanbevelingen als het hier niet vermeld staat. Er zijn veel factoren die worden overwogen en besproken wanneer wij een project aanbevelen, en het documenteren van elke factor is een werk in uitvoering. + +
### Minimum kwalificaties diff --git a/i18n/nl/financial-services.md b/i18n/nl/financial-services.md index 900570a0..f4c325ae 100644 --- a/i18n/nl/financial-services.md +++ b/i18n/nl/financial-services.md @@ -12,37 +12,48 @@ Online betalen is een van de grootste uitdagingen voor privacy. Deze diensten ku Er zijn een aantal diensten die "virtuele debetkaarten" aanbieden die je bij online handelaren kunt gebruiken zonder in de meeste gevallen jouw werkelijke bank- of factureringsgegevens bekend te maken. Het is belangrijk op te merken dat deze financiële diensten **niet** anoniem zijn en onderworpen zijn aan "Know Your Customer" (KYC) wetten en jouw ID of andere identificerende informatie kunnen vereisen. Deze diensten zijn vooral nuttig om je te beschermen tegen inbreuken op gegevens van handelaars, minder gesofisticeerde tracking of aankoopcorrelatie door marketingbureaus, en online gegevensdiefstal; en **niet** om volledig anoniem een aankoop te doen. -!!! tip "Controleer jouw huidige bank" +
+

Check your current bank

- Veel banken en kredietkaartaanbieders bieden hun eigen virtuele kaartfunctionaliteit. Als je er een gebruikt die deze optie al biedt, moet je deze in de meeste gevallen over de volgende aanbevelingen gebruiken. Op die manier vertrouw je niet meerdere partijen met jouw persoonlijke informatie. +Veel banken en kredietkaartaanbieders bieden hun eigen virtuele kaartfunctionaliteit. Als je er een gebruikt die deze optie al biedt, moet je deze in de meeste gevallen over de volgende aanbevelingen gebruiken. Op die manier vertrouw je niet meerdere partijen met jouw persoonlijke informatie. + +
### Privacy.com (VS) -!!! recommendation +
- Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - Met het gratis plan van **Privacy.com** kunt je tot 12 virtuele kaarten per maand aanmaken, uitgavenlimieten op die kaarten instellen en kaarten onmiddellijk uitschakelen. Met hun betaalde plan kunt je tot 36 kaarten per maand aanmaken, 1% cashback krijgen op aankopen en transactiegegevens voor jouw bank verbergen. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacybeleid" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentatie} +Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +Met het gratis plan van **Privacy.com** kunt je tot 12 virtuele kaarten per maand aanmaken, uitgavenlimieten op die kaarten instellen en kaarten onmiddellijk uitschakelen. Met hun betaalde plan kunt je tot 36 kaarten per maand aanmaken, 1% cashback krijgen op aankopen en transactiegegevens voor jouw bank verbergen. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacybeleid" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentatie} + + + +
Privacy.com geeft standaard informatie over de handelaren bij wie je koopt door aan jouw bank. Hun betaalde functie "discrete handelaars" verbergt handelaarsinformatie voor jouw bank, zodat jouw bank alleen ziet dat een aankoop werd gedaan bij Privacy.com maar niet waar dat geld werd uitgegeven, maar dat is niet waterdicht, en natuurlijk heeft Privacy.com nog steeds kennis over de handelaars waar je geld uitgeeft. ### MySudo (VS, Betaald) -!!! recommendation +
- MySudo logo](assets/img/financiële-diensten/mysudo.svg#alleen-licht){ align=right } - MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** biedt tot 9 virtuele kaarten, afhankelijk van het plan dat je koopt. Hun betaalde plannen omvatten bovendien functionaliteit die nuttig kan zijn om privé aankopen te doen, zoals virtuele telefoonnummers en e-mailadressen, hoewel wij gewoonlijk andere [email aliasing providers](email.md) aanbevelen voor uitgebreid e-mail aliasing gebruik. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +MySudo logo](assets/img/financiële-diensten/mysudo.svg#alleen-licht){ align=right } +MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** biedt tot 9 virtuele kaarten, afhankelijk van het plan dat je koopt. Hun betaalde plannen omvatten bovendien functionaliteit die nuttig kan zijn om privé aankopen te doen, zoals virtuele telefoonnummers en e-mailadressen, hoewel wij gewoonlijk andere [email aliasing providers](email.md) aanbevelen voor uitgebreid e-mail aliasing gebruik. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Wij zijn niet verbonden aan de projecten die wij aanbevelen.** Naast [onze standaardcriteria](about/criteria.md)hebben wij een duidelijke reeks eisen ontwikkeld om objectieve aanbevelingen te kunnen doen. Wij stellen voor dat je jezelf vertrouwd maakt met deze lijst voordat je een project kiest, en jouw eigen onderzoek uitvoert om er zeker van te zijn dat je de juiste keuze maakt. -!!! example "Deze sectie is nieuw" +
+

This section is new

- We werken aan het vaststellen van gedefinieerde criteria voor elk deel van onze site, en dit kan onderhevig zijn aan verandering. Als je vragen hebt over onze criteria, stel ze dan [op ons forum](https://discuss.privacyguides.net/latest) en neem niet aan dat we iets niet in overweging hebben genomen bij het opstellen van onze aanbevelingen als het hier niet vermeld staat. Er zijn veel factoren die worden overwogen en besproken wanneer wij een project aanbevelen, en het documenteren van elke factor is een werk in uitvoering. +We werken aan het vaststellen van gedefinieerde criteria voor elk deel van onze site, en dit kan onderhevig zijn aan verandering. Als je vragen hebt over onze criteria, stel ze dan [op ons forum](https://discuss.privacyguides.net/latest) en neem niet aan dat we iets niet in overweging hebben genomen bij het opstellen van onze aanbevelingen als het hier niet vermeld staat. Er zijn veel factoren die worden overwogen en besproken wanneer wij een project aanbevelen, en het documenteren van elke factor is een werk in uitvoering. + +
- Maakt het mogelijk om meerdere kaarten aan te maken die functioneren als een schild tussen de handelaar en jouw persoonlijke financiën. - Kaarten mogen je niet verplichten de handelaar nauwkeurige informatie over het factuuradres te verstrekken. @@ -63,23 +77,30 @@ Met deze diensten kunt je online cadeaubonnen kopen voor verschillende handelare ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - ** CoinCards ** (beschikbaar in de VS, Canada en het VK) kunt je cadeaubonnen kopen voor een grote verscheidenheid aan verkopers. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacybeleid" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentatie} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +** CoinCards ** (beschikbaar in de VS, Canada en het VK) kunt je cadeaubonnen kopen voor een grote verscheidenheid aan verkopers. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacybeleid" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentatie} + + + +
### Criteria **Wij zijn niet verbonden aan de projecten die wij aanbevelen.** Naast [onze standaardcriteria](about/criteria.md)hebben wij een duidelijke reeks eisen ontwikkeld om objectieve aanbevelingen te kunnen doen. Wij stellen voor dat je jezelf vertrouwd maakt met deze lijst voordat je een project kiest, en jouw eigen onderzoek uitvoert om er zeker van te zijn dat je de juiste keuze maakt. -!!! example "Deze sectie is nieuw" +
+

This section is new

- We werken aan het vaststellen van gedefinieerde criteria voor elk deel van onze site, en dit kan onderhevig zijn aan verandering. Als je vragen hebt over onze criteria, stel ze dan [op ons forum](https://discuss.privacyguides.net/latest) en neem niet aan dat we iets niet in overweging hebben genomen bij het opstellen van onze aanbevelingen als het hier niet vermeld staat. Er zijn veel factoren die worden overwogen en besproken wanneer wij een project aanbevelen, en het documenteren van elke factor is een werk in uitvoering. +We werken aan het vaststellen van gedefinieerde criteria voor elk deel van onze site, en dit kan onderhevig zijn aan verandering. Als je vragen hebt over onze criteria, stel ze dan [op ons forum](https://discuss.privacyguides.net/latest) en neem niet aan dat we iets niet in overweging hebben genomen bij het opstellen van onze aanbevelingen als het hier niet vermeld staat. Er zijn veel factoren die worden overwogen en besproken wanneer wij een project aanbevelen, en het documenteren van elke factor is een werk in uitvoering. + +
- Accepteert betaling in [een aanbevolen cryptocurrency](cryptocurrency.md). - Geen identificatieplicht. diff --git a/i18n/nl/router.md b/i18n/nl/router.md index 0ddbcc28..4c15f7a4 100644 --- a/i18n/nl/router.md +++ b/i18n/nl/router.md @@ -1,7 +1,7 @@ --- title: "Router Firmware" icon: material/router-wireless -description: Deze alternatieve besturingssystemen kunnen worden gebruikt om jouw router of Wi-Fi-toegangspunt te beveiligen. +description: These alternative operating systems can be used to secure your router or Wi-Fi access point. cover: router.webp --- @@ -9,32 +9,40 @@ Hieronder staan een paar alternatieve besturingssystemen, die gebruikt kunnen wo ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** is een op Linux gebaseerd besturingssysteem; het wordt voornamelijk gebruikt op embedded apparaten om netwerkverkeer te routeren. De belangrijkste onderdelen zijn de Linux kernel, util-linux, uClibc, en BusyBox. Alle componenten zijn geoptimaliseerd voor afmetingen, zodat ze klein genoeg zijn om in de beperkte opslagruimte en het beperkte geheugen van thuisrouters te passen. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentatie} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Broncode" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Bijdragen} +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** is een op Linux gebaseerd besturingssysteem; het wordt voornamelijk gebruikt op embedded apparaten om netwerkverkeer te routeren. De belangrijkste onderdelen zijn de Linux kernel, util-linux, uClibc, en BusyBox. Alle componenten zijn geoptimaliseerd voor afmetingen, zodat ze klein genoeg zijn om in de beperkte opslagruimte en het beperkte geheugen van thuisrouters te passen. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentatie} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Broncode" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Bijdragen} + + + +
Je kunt OpenWrt's [tabel van hardware](https://openwrt.org/toh/start) raadplegen om te controleren of jouw toestel ondersteund wordt. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense wordt gewoonlijk ingezet als perimeter firewall, router, draadloos toegangspunt, DHCP server, DNS server en VPN eindpunt. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentatie} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Broncode" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Bijdrage leveren } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense wordt gewoonlijk ingezet als perimeter firewall, router, draadloos toegangspunt, DHCP server, DNS server en VPN eindpunt. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentatie} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Broncode" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Bijdrage leveren } + + + +
OPNsense werd oorspronkelijk ontwikkeld als een fork van [pfSense](https://en.wikipedia.org/wiki/PfSense), en beide projecten staan bekend als vrije en betrouwbare firewall-distributies die mogelijkheden bieden die vaak alleen in dure commerciële firewalls te vinden zijn. De ontwikkelaars van OPNsense [, gelanceerd in 2015, noemden](https://docs.opnsense.org/history/thefork.html) een aantal beveiligings- en code-kwaliteitsproblemen met pfSense die volgens hen een fork van het project noodzakelijk maakten, evenals zorgen over de meerderheidsovername van pfSense door Netgate en de toekomstige richting van het pfSense-project. @@ -42,9 +50,12 @@ OPNsense werd oorspronkelijk ontwikkeld als een fork van [pfSense](https://en.wi **Wij zijn niet verbonden aan de projecten die wij aanbevelen.** Naast [onze standaardcriteria](about/criteria.md)hebben wij een duidelijke reeks eisen ontwikkeld om objectieve aanbevelingen te kunnen doen. Wij stellen voor dat je jezelf vertrouwd maakt met deze lijst voordat je een project kiest, en jouw eigen onderzoek uitvoert om er zeker van te zijn dat je de juiste keuze maakt. -!!! example "Deze sectie is nieuw" +
+

This section is new

- We werken aan het vaststellen van gedefinieerde criteria voor elk deel van onze site, en dit kan onderhevig zijn aan verandering. Als je vragen hebt over onze criteria, stel ze dan [op ons forum](https://discuss.privacyguides.net/latest) en neem niet aan dat we iets niet in overweging hebben genomen bij het opstellen van onze aanbevelingen als het hier niet vermeld staat. Er zijn veel factoren die worden overwogen en besproken wanneer wij een project aanbevelen, en het documenteren van elke factor is een werk in uitvoering. +We werken aan het vaststellen van gedefinieerde criteria voor elk deel van onze site, en dit kan onderhevig zijn aan verandering. Als je vragen hebt over onze criteria, stel ze dan [op ons forum](https://discuss.privacyguides.net/latest) en neem niet aan dat we iets niet in overweging hebben genomen bij het opstellen van onze aanbevelingen als het hier niet vermeld staat. Er zijn veel factoren die worden overwogen en besproken wanneer wij een project aanbevelen, en het documenteren van elke factor is een werk in uitvoering. + +
- Moet open source zijn. - Moet regelmatig updates ontvangen. diff --git a/i18n/pl/android.md b/i18n/pl/android.md index f882d0cc..901a9fa2 100644 --- a/i18n/pl/android.md +++ b/i18n/pl/android.md @@ -1,7 +1,7 @@ --- meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" title: "Android" -icon: 'fontawesome/brands/android' +icon: 'simple/android' description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- Urządzenia z zakończonym okresem wsparcia (takie jak urządzenia z "rozszerzonym wsparciem" dla GrapheneOS lub CalyxOS) nie posiadają pełnych poprawek bezpieczeństwa (aktualizacji oprogramowania), ponieważ ich producenci przestali je wspierać. Te urządzenia nie mogą być uznawane za w pełni bezpieczne niezależnie od zainstalowanego oprogramowania. +Urządzenia z zakończonym okresem wsparcia (takie jak urządzenia z "rozszerzonym wsparciem" dla GrapheneOS lub CalyxOS) nie posiadają pełnych poprawek bezpieczeństwa (aktualizacji oprogramowania), ponieważ ich producenci przestali je wspierać. Te urządzenia nie mogą być uznawane za w pełni bezpieczne niezależnie od zainstalowanego oprogramowania. + +
### GrapheneOS -!!! rekomendacja +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** jest najlepszym wyborem w kwestii prywatności i bezpieczeństwa. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** jest najlepszym wyborem w kwestii prywatności i bezpieczeństwa. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! rekomendacja +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Urządzenia z Androidem @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! rekomendacja +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! rekomendacja +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! rekomendacja +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! rekomendacja +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Źródła aplikacji ### Obtainium -!!! rekomendacja +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! rekomendacja +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Operating Systems diff --git a/i18n/pl/calendar.md b/i18n/pl/calendar.md index efb7712a..ecc49b6a 100644 --- a/i18n/pl/calendar.md +++ b/i18n/pl/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! rekomendacja +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Wiele kalendarzy oraz rozszerzone funkcje udostępniania są ograniczone do płatnych subskrybentów. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Wiele kalendarzy oraz rozszerzone funkcje udostępniania są ograniczone do płatnych subskrybentów. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! rekomendacja +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/pl/cloud.md b/i18n/pl/cloud.md index 5930c65e..34b98b3d 100644 --- a/i18n/pl/cloud.md +++ b/i18n/pl/cloud.md @@ -10,29 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "Looking for Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! rekomendacja +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! rekomendacja +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Requirements diff --git a/i18n/pl/email-clients.md b/i18n/pl/email-clients.md index 013c68d4..8ff4a1f0 100644 --- a/i18n/pl/email-clients.md +++ b/i18n/pl/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! rekomendacja +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Recommended Configuration @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! rekomendacja +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! rekomendacja +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! rekomendacja +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! rekomendacja +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! rekomendacja +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! rekomendacja +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! rekomendacja +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! rekomendacja +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/pl/financial-services.md b/i18n/pl/financial-services.md index 6d7c9cf0..60641cd0 100644 --- a/i18n/pl/financial-services.md +++ b/i18n/pl/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! rekomendacja +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! rekomendacja +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! rekomendacja +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/pl/router.md b/i18n/pl/router.md index 3d7699c5..e3ccfe93 100644 --- a/i18n/pl/router.md +++ b/i18n/pl/router.md @@ -9,32 +9,40 @@ Poniżej wymieniono kilka alternatywnych systemów operacyjnych, które możesz ## OpenWrt -!!! rekomendacja +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** to system operacyjny oparty na oprogramowaniu Linux; jest używany głównie w urządzeniach wbudowanych do kierowania ruchem sieciowym. Zawiera util-linux, uClibc oraz BusyBox. Wszystkie komponenty zostały zoptymalizowane pod kątem routerów domowych. - - [:octicons-home-16: Strona WWW](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Dokumentacja} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Kod źródłowy" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Wesprzyj } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** to system operacyjny oparty na oprogramowaniu Linux; jest używany głównie w urządzeniach wbudowanych do kierowania ruchem sieciowym. Zawiera util-linux, uClibc oraz BusyBox. Wszystkie komponenty zostały zoptymalizowane pod kątem routerów domowych. + +[:octicons-home-16: Strona WWW](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Dokumentacja} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Kod źródłowy" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Wesprzyj } + + + +
Zapoznaj się z [listą obsługiwanych urządzeń](https://openwrt.org/toh/start), aby sprawdzić, czy Twoje urządzenie jest obsługiwane. ## OPNsense -!!! rekomendacja +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. Po zainstalowaniu na komputerze pełni rolę dedykowanej zapory sieciowej/routera dla sieci i wyróżnia się niezawodnością oraz oferuje funkcje, które można często znaleźć tylko w drogich zaporach sieciowych. - - [:octicons-home-16: Strona WWW](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Dokumentacja} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Kod źródłowy" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Wesprzyj } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. Po zainstalowaniu na komputerze pełni rolę dedykowanej zapory sieciowej/routera dla sieci i wyróżnia się niezawodnością oraz oferuje funkcje, które można często znaleźć tylko w drogich zaporach sieciowych. + +[:octicons-home-16: Strona WWW](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Dokumentacja} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Kod źródłowy" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Wesprzyj } + + + +
OPNsense zostało pierwotnie opracowane na podstawie [pfSense](https://en.wikipedia.org/wiki/PfSense), a oba te projekty są znane z bycia bezpłatnymi i niezawodnymi dystrybucjami zapór sieciowych, które oferują funkcje dostępne często tylko w drogich komercyjnych zaporach sieciowych. Począwszy od 2015 roku programiści OPNsense [ujawnili](https://docs.opnsense.org/history/thefork.html) wiele problemów dotyczących bezpieczeństwa i jakości kodu pfSense, co popchnęło ich w stronę utworzenia pochodnego projektu, jak również obawy związane z większościowym zakupem pfSense przez Netgate i przyszłym kierunkiem rozwoju projektu. @@ -42,9 +50,12 @@ OPNsense zostało pierwotnie opracowane na podstawie [pfSense](https://en.wikipe **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Wymagane jest otwarte źródło. - Wymagane są regularne aktualizacje. diff --git a/i18n/pt-BR/android.md b/i18n/pt-BR/android.md index cf223dcc..f5e554ff 100644 --- a/i18n/pt-BR/android.md +++ b/i18n/pt-BR/android.md @@ -1,8 +1,8 @@ --- -meta_title: "Recomendações para Android: GrapheneOS e DivestOS — Privacy Guides" +meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" title: "Android" icon: 'simple/android' -description: Você pode substituir o sistema operacional do seu celular Android por essas alternativas seguras e que respeitam a privacidade. +description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: - @@ -95,26 +95,31 @@ Estes são os sistemas operacionais, dispositivos e aplicações Android que rec Recomendamos instalar um desses sistemas operacionais Android personalizados em seu dispositivo, listados em ordem de preferência, dependendo da compatibilidade do seu dispositivo com esses sistemas operacionais. -!!! nota +
+

Note

- Os dispositivos em fim de vida útil (como os dispositivos GrapheneOS ou "suporte estendido" da CalyxOS) não possuem patches de segurança completos (atualizações de firmware) devido à interrupção do suporte do OEM. Estes dispositivos não podem ser considerados completamente seguros, independentemente do software instalado. +Os dispositivos em fim de vida útil (como os dispositivos GrapheneOS ou "suporte estendido" da CalyxOS) não possuem patches de segurança completos (atualizações de firmware) devido à interrupção do suporte do OEM. Estes dispositivos não podem ser considerados completamente seguros, independentemente do software instalado. + +
### GrapheneOS -!!! recomendação +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS*** é a melhor escolha quando se trata de privacidade e segurança. - - O GrapheneOS conta com um [hardening](https://pt.wikipedia.org/wiki/Hardening) adicional e melhorias de privacidade. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS*** é a melhor escolha quando se trata de privacidade e segurança. + +O GrapheneOS conta com um [hardening](https://pt.wikipedia.org/wiki/Hardening) adicional e melhorias de privacidade. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. Isso significa que você pode tirar proveito da maioria dos Google Play Services, como [notificações push](https://firebase.google.com/docs/cloud-messaging/), enquanto lhe dá controle total sobre suas permissões e acesso, e ao mesmo tempo contê-los para um perfil de trabalho [específico](os/android-overview.md#work-profile) ou [perfil de usuário](os/android-overview.md#user-profiles) de sua escolha. @@ -124,19 +129,21 @@ Os telefones Google Pixel são os únicos dispositivos que atualmente atendem ao ### DivestOS -!!! recomendação +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ O DivestOS implementa alguns patches de fortalecimento desenvolvidos originalmen DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! aviso +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ Ao adquirir um dispositivo, recomendamos que o adquira o mais novo possível. O Evite comprar telefones de operadoras de redes móveis. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Tenha muito **cuidado** ao comprar celulares usados nas lojas online. Sempre verifique a reputação do vendedor. Se for um dispositivo roubado, o [IMEI pode estar na lista proibida](https://www.gsma.com/security/resources/imei-blacklisting/). Também existe o risco de você ser associado com a atividade do proprietário anterior. +Tenha muito **cuidado** ao comprar celulares usados nas lojas online. Sempre verifique a reputação do vendedor. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). Também existe o risco de você ser associado com a atividade do proprietário anterior. Mais algumas dicas sobre os aparelhos Android e a compatibilidade do sistema operacional: @@ -168,15 +178,17 @@ Mais algumas dicas sobre os aparelhos Android e a compatibilidade do sistema ope Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap A Google Play Store exige uma conta do Google para fazer login, o que não é muito bom para a privacidade. Você pode contornar esse problema usando um cliente alternativo, como o Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store não permite que você baixe aplicativos pagos com o recurso de conta anônima. Opcionalmente, você pode fazer login com sua conta do Google na Aurora Store para baixar os aplicativos que comprou, o que dá acesso à lista de aplicativos que você instalou para o Google, mas você ainda se beneficia por não precisar do cliente completo do Google Play e do Google Play Services ou do microG no seu dispositivo. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- Em alguns raros casos, o desenvolvedor só vai disponibilizar o app no F-Droid ([Gadgetbridge](https://gadgetbridge.org/) é um exemplo). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +Em alguns raros casos, o desenvolvedor só vai disponibilizar o app no F-Droid ([Gadgetbridge](https://gadgetbridge.org/) é um exemplo). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Sistemas Operacionais diff --git a/i18n/pt-BR/calendar.md b/i18n/pt-BR/calendar.md index 0e55b781..06e8322d 100644 --- a/i18n/pt-BR/calendar.md +++ b/i18n/pt-BR/calendar.md @@ -9,48 +9,58 @@ Os calendários contêm alguns de seus dados mais confidenciais; use produtos qu ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - A funcionalidade de múltiplos calendários e compartilhamento adicional é limitada a assinantes pagos. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +A funcionalidade de múltiplos calendários e compartilhamento adicional é limitada a assinantes pagos. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/pt-BR/cloud.md b/i18n/pt-BR/cloud.md index e9f25c75..21a94523 100644 --- a/i18n/pt-BR/cloud.md +++ b/i18n/pt-BR/cloud.md @@ -10,29 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "Looking for Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Requirements diff --git a/i18n/pt-BR/email-clients.md b/i18n/pt-BR/email-clients.md index 84dc740d..dd72c9ad 100644 --- a/i18n/pt-BR/email-clients.md +++ b/i18n/pt-BR/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Firefox @@ -60,169 +68,217 @@ Se você quiser permanecer conectado a sites específicos, você pode permitir e ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/pt-BR/financial-services.md b/i18n/pt-BR/financial-services.md index c19446ed..5e4f9b62 100644 --- a/i18n/pt-BR/financial-services.md +++ b/i18n/pt-BR/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/pt-BR/router.md b/i18n/pt-BR/router.md index 327f39ff..ebbdda64 100644 --- a/i18n/pt-BR/router.md +++ b/i18n/pt-BR/router.md @@ -9,32 +9,40 @@ Abaixo estão alguns sistemas operacionais alternativos, que podem ser usados em ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark. vg#only-dark){ align=right } - - **OpenWrt** é um sistema operacional baseado em Linux; ele é usado principalmente em dispositivos incorporados (embedded) para rotear o tráfego de rede. Inclui util-linux, uClibc e BusyBox. Todos os componentes foram otimizados para roteadores domésticos. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentação} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribuir } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark. vg#only-dark){ align=right } + +**OpenWrt** é um sistema operacional baseado em Linux; ele é usado principalmente em dispositivos incorporados (embedded) para rotear o tráfego de rede. Inclui util-linux, uClibc e BusyBox. Todos os componentes foram otimizados para roteadores domésticos. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentação} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribuir } + + + +
Você pode consultar a tabela [de hardware](https://openwrt.org/toh/start) do OpenWrt para verificar se o seu dispositivo é compatível. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. O OPNsense é comumente implantado como um firewall de perímetro, roteador, ponto de acesso wireless, servidor DHCP, servidor DNS e endpoint de VPN. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentação} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribuir } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. O OPNsense é comumente implantado como um firewall de perímetro, roteador, ponto de acesso wireless, servidor DHCP, servidor DNS e endpoint de VPN. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentação} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribuir } + + + +
OPNsense foi originalmente desenvolvido como um fork do [pfSense](https://en.wikipedia.org/wiki/PfSense), e ambos os projetos são conhecidos por serem distribuições de firewall gratuitas e confiáveis que oferecem recursos frequentemente encontrados apenas em firewalls comerciais caros. Lançado em 2015, os desenvolvedores do OPNsense [citaram](https://docs.opnsense.org/history/thefork.html) uma série de problemas de segurança e qualidade de código com o pfSense. Assim, eles sentiram necessário criar um fork do projeto, além de terem preocupações sobre a aquisição majoritária do pfSense pela Netgate e a direção futura do projeto pfSense. @@ -42,9 +50,12 @@ OPNsense foi originalmente desenvolvido como um fork do [pfSense](https://en.wik **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Deve ser de código aberto. - Deve receber atualizações regulares. diff --git a/i18n/pt/android.md b/i18n/pt/android.md index 9a0ee996..5ee7da93 100644 --- a/i18n/pt/android.md +++ b/i18n/pt/android.md @@ -1,14 +1,14 @@ --- -meta_title: "Recomendações para Android: GrapheneOS e DivestOS - Privacy Guides" +meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" title: "Android" icon: 'simple/android' -description: Pode substituir o sistema operativo do seu telemóvel Android por estas alternativas seguras e respeitadoras de privacidade. +description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: - "@context": http://schema.org "@type": WebPage - name: Sistemas Operativos Android Privados + name: Private Android Operating Systems url: "./" - "@context": http://schema.org @@ -16,7 +16,7 @@ schema: name: Android image: /assets/img/android/android.svg url: https://source.android.com/ - sameAs: https://pt.wikipedia.org/wiki/Android_(sistema_operativo) + sameAs: https://en.wikipedia.org/wiki/Android_(operating_system) - "@context": http://schema.org "@type": CreativeWork @@ -47,7 +47,7 @@ schema: "@type": Brand name: Google image: /assets/img/android/google-pixel.png - sameAs: https://pt.wikipedia.org/wiki/Google_Pixel + sameAs: https://en.wikipedia.org/wiki/Google_Pixel review: "@type": Review author: @@ -56,25 +56,25 @@ schema: - "@context": http://schema.org "@type": MobileApplication - name: Perfis de usuário + name: Shelter applicationCategory: Utilities operatingSystem: Android - "@context": http://schema.org "@type": MobileApplication - name: Perfil de trabalho + name: Auditor applicationCategory: Utilities operatingSystem: Android - "@context": http://schema.org "@type": MobileApplication - name: Câmara Segura + name: Secure Camera applicationCategory: Utilities operatingSystem: Android - "@context": http://schema.org "@type": MobileApplication - name: Visualizador de PDF Seguro + name: Secure PDF Viewer applicationCategory: Utilities operatingSystem: Android --- @@ -95,27 +95,31 @@ Estes são os sistemas operativos, dispositivos e aplicações Android que recom Recomendamos instalar um destes sistemas operativos Android personalizados no seu dispositivo, listados por ordem de preferência, dependendo da compatibilidade do seu dispositivo com estes sistemas operativos. -!!! nota +
+

Note

- Os dispositivos em fim de vida (como os dispositivos GrapheneOS ou CalyxOS com "suporte alargado") não têm patches de segurança completos (atualizações de firmware) devido ao fato de o OEM ter interrompido o suporte. Estes dispositivos não podem ser considerados completamente seguros, independentemente do software instalado. +Os dispositivos em fim de vida (como os dispositivos GrapheneOS ou CalyxOS com "suporte alargado") não têm patches de segurança completos (atualizações de firmware) devido ao fato de o OEM ter interrompido o suporte. Estes dispositivos não podem ser considerados completamente seguros, independentemente do software instalado. + +
### GrapheneOS -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Logótipo GrapheneOS](assets/img/android/grapheneos.svg#only-light){ align=right } - ![Logótipo GrapheneOS](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - O **GrapheneOS** é a melhor escolha quando se trata de privacidade e segurança. - - O GrapheneOS proporciona melhorias adicionais [reforço da segurança](https://en.wikipedia.org/wiki/Hardening_(computing)) e da privacidade. Tem um [alocador de memória reforçado](https://github.com/GrapheneOS/hardened_malloc), permissões de rede e de sensor e várias outras [características de segurança](https://grapheneos.org/features). O GrapheneOS também vem com atualizações de firmware completas e compilações assinadas, pelo que o arranque verificado é totalmente suportado. - - [:octicons-home-16: Página Inicial](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Política de Privacidade" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentação} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Código fonte" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribuir } +![Logótipo GrapheneOS](assets/img/android/grapheneos.svg#only-light){ align=right } +![Logótipo GrapheneOS](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +O **GrapheneOS** é a melhor escolha quando se trata de privacidade e segurança. + +O GrapheneOS proporciona melhorias adicionais [reforço da segurança](https://en.wikipedia.org/wiki/Hardening_(computing)) e da privacidade. Tem um [alocador de memória reforçado](https://github.com/GrapheneOS/hardened_malloc), permissões de rede e de sensor e várias outras [características de segurança](https://grapheneos.org/features). O GrapheneOS também vem com atualizações de firmware completas e compilações assinadas, pelo que o arranque verificado é totalmente suportado. + +[:octicons-home-16: Página Inicial](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Política de Privacidade" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentação} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Código fonte" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribuir } + +
GrapheneOS suporta o [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), que executa [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) totalmente sandboxed como qualquer outro aplicativo regular. Isto significa que pode tirar partido da maioria dos serviços do Google Play, como as notificações push [](https://firebase.google.com/docs/cloud-messaging/), ao mesmo tempo que lhe dá controlo total sobre as suas permissões e acesso, e, ao mesmo tempo, que os restringe a um perfil de trabalho específico [](os/android-overview.md#work-profile) ou a um perfil de utilizador [](os/android-overview.md#user-profiles) à sua escolha. @@ -125,20 +129,21 @@ Os telemóveis Google Pixel são os únicos dispositivos que cumprem atualmente ### DivestOS -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Logótipo do DivestOS](assets/img/android/divestos.svg){ align=right } - - **DivestOS** é um soft-fork do [LineageOS](https://lineageos.org/). - O DivestOS herda muitos [dispositivos suportados] (https://divestos.org/index.php?page=devices&base=LineageOS) do LineageOS. Tem compilações assinadas, possibilitando ter [arranque verificado](https://source.android.com/security/verifiedboot) em alguns dispositivos não Pixel. - - [:octicons-home-16: Página Inicial](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Serviço Onion" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Política de Privacidade" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentação} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Código fonte" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribuir } +![Logótipo do DivestOS](assets/img/android/divestos.svg){ align=right } + +**DivestOS** é um soft-fork do [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. Tem compilações assinadas, possibilitando ter [arranque verificado](https://source.android.com/security/verifiedboot) em alguns dispositivos não Pixel. + +[:octicons-home-16: Página Inicial](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Serviço Onion" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Política de Privacidade" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentação} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Código fonte" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribuir } + +
O DivestOS tem vulnerabilidades automatizadas do kernel ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), menos blobs proprietários, e um ficheiro [hosts](https://divested.dev/index.php?page=dnsbl) personalizado. O seu WebView reforçado, [Mulch](https://gitlab.com/divested-mobile/mulch), permite [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) para todas as arquiteturas e [particionamento do estado da rede](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), e recebe atualizações fora de banda. O DivestOS também inclui patches de kernel do GrapheneOS e habilita todos os recursos de segurança do kernel disponíveis via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). Todos os kernels mais recentes que a versão 3.4 incluem [sanitização de página inteira](https://lwn.net/Articles/334747/) e todos os ~22 kernels compilados pela Clang têm [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) ativado. @@ -146,11 +151,14 @@ O DivestOS implementa alguns patches de proteção de sistema originalmente dese O DivestOS utiliza o F-Droid como loja de aplicações por padrão. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. Para outras aplicações, os nossos métodos recomendados para as obter continuam a aplicar-se. -!!! aviso +
+

Warning

- Atualizações do firmware do DivestOS [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) e o controlo de qualidade variam consoante os dispositivos que suporta. Continuamos a recomendar o GrapheneOS, dependendo da compatibilidade do seu dispositivo. Para outros dispositivos, o DivestOS é uma boa alternativa. - - Nem todos os dispositivos suportados têm arranque verificado, e alguns têm-no melhor do que outros. +Atualizações do firmware do DivestOS [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) e o controlo de qualidade variam consoante os dispositivos que suporta. Continuamos a recomendar o GrapheneOS, dependendo da compatibilidade do seu dispositivo. Para outros dispositivos, o DivestOS é uma boa alternativa. + +Nem todos os dispositivos suportados têm arranque verificado, e alguns têm-no melhor do que outros. + +
## Dispositivos Android @@ -158,7 +166,7 @@ Ao comprar um dispositivo, recomendamos que o adquira o mais novo possível. O s Evite comprar telemóveis a operadores de redes móveis. Estes têm frequentemente um **bootloader bloqueado** e não suportam [desbloqueio OEM](https://source.android.com/devices/bootloader/locking_unlocking). Estas variantes de telemóvel impedem-no de instalar qualquer tipo de distribuição alternativa do Android. -Tenha muito **cuidado** ao comprar telemóveis em segunda mão em mercados online. Verifique sempre a reputação do vendedor. Se o dispositivo for roubado, existe a possibilidade de o [IMEI ser colocado na lista negra](https://www.gsma.com/security/resources/imei-blacklisting/). Existe também o risco de estar associado à atividade do proprietário anterior. +Tenha muito **cuidado** ao comprar telemóveis em segunda mão em mercados online. Verifique sempre a reputação do vendedor. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). Existe também o risco de estar associado à atividade do proprietário anterior. Mais algumas dicas sobre dispositivos Android e compatibilidade com o sistema operativo: @@ -170,16 +178,17 @@ Mais algumas dicas sobre dispositivos Android e compatibilidade com o sistema op Os telemóveis Google Pixel são os **únicos dispositivos** que recomendamos para compra. Os telemóveis Pixel têm uma segurança de hardware mais forte do que qualquer outro dispositivo Android atualmente no mercado, devido ao suporte AVB adequado para sistemas operativos de terceiros e aos chips de segurança personalizados [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) da Google, que atuam como elemento seguro. -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - Os dispositivos **Google Pixel** são conhecidos por terem uma boa segurança e suportarem corretamente o [Verified Boot] (https://source.android.com/security/verifiedboot), mesmo quando instalam sistemas operativos personalizados. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Loja](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +Os dispositivos **Google Pixel** são conhecidos por terem uma boa segurança e suportarem corretamente o [Verified Boot] (https://source.android.com/security/verifiedboot), mesmo quando instalam sistemas operativos personalizados. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Loja](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Os Secure Elements, como o Titan M2, são mais limitados do que o Trusted Execution Environment do processador utilizado pela maioria dos outros telemóveis, uma vez que são utilizados apenas para armazenamento de segredos, atestação de hardware e limitação de taxas, e não para executar programas "de confiança". Os telemóveis sem um elemento seguro têm de utilizar o TEE para *todas* essas funções, o que resulta numa maior superfície de ataque. @@ -201,45 +210,53 @@ Nós recomendamos uma grande variedade de aplicações Android neste sítio web. ### Shelter -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Logótipo do Shelter](assets/img/android/shelter.svg){ align=right } - - **Shelter** é uma aplicação que o ajuda a tirar partido da funcionalidade Perfil de trabalho do Android para isolar ou duplicar aplicações no seu dispositivo. - - O Shelter suporta o bloqueio da pesquisa de contactos entre perfis e a partilha de ficheiros entre perfis através do gestor de ficheiros predefinido ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repositório](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Código fonte" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribuir } +![Logótipo do Shelter](assets/img/android/shelter.svg){ align=right } -!!! aviso +**Shelter** é uma aplicação que o ajuda a tirar partido da funcionalidade Perfil de trabalho do Android para isolar ou duplicar aplicações no seu dispositivo. - O Shelter é recomendado em relação a [Insular](https://secure-system.gitlab.io/Insular/) e [Island](https://github.com/oasisfeng/island), uma vez que suporta [bloqueio de pesquisa de contactos] (https://secure-system.gitlab.io/Insular/faq.html). - - Ao utilizar o Shelter, deposita a total confiança no seu programador, uma vez que o Shelter atua como [Device Admin] (https://developer.android.com/guide/topics/admin/device-admin) para criar o Perfil de Trabalho com um acesso alargado aos dados armazenados no Perfil de Trabalho. +O Shelter suporta o bloqueio da pesquisa de contactos entre perfis e a partilha de ficheiros entre perfis através do gestor de ficheiros predefinido ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). -### Câmara Segura +[:octicons-repo-16: Repositório](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Código fonte" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribuir } -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Logótipo da Câmara Segura](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Logótipo da Câmara Segura](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** é uma aplicação de câmara centrada na privacidade e segurança que pode captar imagens, vídeos e códigos QR. As extensões do fornecedor CameraX (Retrato, HDR, Visão noturna, retoque facial e Automático) também são suportadas nos dispositivos disponíveis. - - [:octicons-repo-16: Repositório](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentação} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Código fonte" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribuir } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +
+

Warning

+ +O Shelter é recomendado em relação a [Insular](https://secure-system.gitlab.io/Insular/) e [Island](https://github.com/oasisfeng/island), uma vez que suporta [bloqueio de pesquisa de contactos] (https://secure-system.gitlab.io/Insular/faq.html). + +Ao utilizar o Shelter, deposita a total confiança no seu programador, uma vez que o Shelter atua como [Device Admin] (https://developer.android.com/guide/topics/admin/device-admin) para criar o Perfil de Trabalho com um acesso alargado aos dados armazenados no Perfil de Trabalho. + +
+ +### Secure Camera + +
+ +![Logótipo da Câmara Segura](assets/img/android/secure_camera.svg#only-light){ align=right } +![Logótipo da Câmara Segura](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** é uma aplicação de câmara centrada na privacidade e segurança que pode captar imagens, vídeos e códigos QR. As extensões do fornecedor CameraX (Retrato, HDR, Visão noturna, retoque facial e Automático) também são suportadas nos dispositivos disponíveis. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
As principais características de privacidade incluem: @@ -247,52 +264,63 @@ As principais características de privacidade incluem: - Utilização da nova API [Media](https://developer.android.com/training/data-storage/shared/media), pelo que não são necessárias as [permissões de armazenamento](https://developer.android.com/training/data-storage) - Não é necessária autorização para microfone, exceto se pretender gravar som -!!! nota +
+

Note

- Atualmente, os metadados não são eliminados dos ficheiros de vídeo, mas isso está planeado. - - Os metadados de orientação da imagem não são eliminados. Se ativar a localização (na Câmara segura), esta **não será** apagada. Se pretender eliminar essa informação mais tarde, terá de utilizar uma aplicação externa, como [ExifEraser](data-redaction.md#exiferaser). +Atualmente, os metadados não são eliminados dos ficheiros de vídeo, mas isso está planeado. + +Os metadados de orientação da imagem não são eliminados. Se ativar a localização (na Câmara segura), esta **não será** apagada. Se pretender eliminar essa informação mais tarde, terá de utilizar uma aplicação externa, como [ExifEraser](data-redaction.md#exiferaser). + +
### Visualizador de PDF Seguro -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Logótipo do Visualizador Seguro de PDF](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Logótipo do Secure PDF Viewer](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - O **Secure PDF Viewer** é um visualizador de PDF baseado em [pdf.js](https://en.wikipedia.org/wiki/PDF.js) que não requer quaisquer permissões. O PDF é introduzido num ficheiro [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). Isto significa que não necessita de permissão direta para aceder a conteúdos ou ficheiros. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) é utilizado para garantir que o JavaScript e as propriedades de estilo no WebView são inteiramente conteúdos estáticos. - - [:octicons-repo-16: Repositório](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Código fonte" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribuir } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Logótipo do Visualizador Seguro de PDF](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Logótipo do Secure PDF Viewer](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +O **Secure PDF Viewer** é um visualizador de PDF baseado em [pdf.js](https://en.wikipedia.org/wiki/PDF.js) que não requer quaisquer permissões. O PDF é introduzido num ficheiro [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). Isto significa que não necessita de permissão direta para aceder a conteúdos ou ficheiros. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) é utilizado para garantir que o JavaScript e as propriedades de estilo no WebView são inteiramente conteúdos estáticos. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obter Aplicações ### Obtainium -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -304,20 +332,24 @@ A loja de aplicações GrapheneOS está disponível no [GitHub](https://github.c A Google Play Store requer uma conta do Google para entrar, o que não é ótimo para privacidade. Pode contornar isto utilizando um cliente alternativo, como a Aurora Store. -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Logótipo da Aurora Store](assets/img/android/aurora-store.webp){ align=right } - - A **Aurora Store** é um cliente da Google Play Store que não requer uma Conta Google, Google Play Services ou microG para transferir aplicações. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Logótipo da Aurora Store](assets/img/android/aurora-store.webp){ align=right } + +A **Aurora Store** é um cliente da Google Play Store que não requer uma Conta Google, Google Play Services ou microG para transferir aplicações. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
A Aurora Store não permite descarregar aplicações pagas com a sua funcionalidade de conta anónima. Opcionalmente, pode iniciar sessão com a sua conta Google na Aurora Store para descarregar aplicações que tenha comprado, o que dá acesso à lista de aplicações que instalou para a Google, mas continua a beneficiar do facto de não necessitar do cliente Google Play completo e do Google Play Services ou do microG no seu dispositivo. @@ -382,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- Em alguns casos raros, o programador de uma aplicação só a distribui através do F-Droid ([Gadgetbridge](https://gadgetbridge.org/) é um exemplo disso). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +Em alguns casos raros, o programador de uma aplicação só a distribui através do F-Droid ([Gadgetbridge](https://gadgetbridge.org/) é um exemplo disso). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Critérios **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! Considere o auto-hospedagem para mitigar esta ameaça. +
+

This section is new

- Estamos a trabalhar no sentido de estabelecer critérios definidos para cada secção do nosso sítio, o que pode estar sujeito a alterações. Se tiver alguma dúvida sobre os critérios utilizados, por favor [pergunte no nosso fórum](https://discuss.privacyguides.net/latest) e não parta do princípio de que algo foi excluído das nossas recomendações, caso não esteja listado aqui. São muitos os fatores considerados e discutidos quando recomendamos um projeto, e documentar cada um deles é um trabalho em curso. +Estamos a trabalhar no sentido de estabelecer critérios definidos para cada secção do nosso sítio, o que pode estar sujeito a alterações. Se tiver alguma dúvida sobre os critérios utilizados, por favor [pergunte no nosso fórum](https://discuss.privacyguides.net/latest) e não parta do princípio de que algo foi excluído das nossas recomendações, caso não esteja listado aqui. São muitos os fatores considerados e discutidos quando recomendamos um projeto, e documentar cada um deles é um trabalho em curso. + +
### Sistemas Operativos diff --git a/i18n/pt/calendar.md b/i18n/pt/calendar.md index 3f5d8f0c..6cb905d0 100644 --- a/i18n/pt/calendar.md +++ b/i18n/pt/calendar.md @@ -9,50 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Auto-hospedagem -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Todos os dados armazenados dentro dele são encriptados de ponta a ponta quando armazenados nos servidores do ProtonMail. Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Todos os dados armazenados dentro dele são encriptados de ponta a ponta quando armazenados nos servidores do ProtonMail. Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -60,11 +68,14 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! Considere o auto-hospedagem para mitigar esta ameaça. +
+

This section is new

- ![logo PrivateBin](/assets/img/productivity/privatebin.svg){ align=right } - - **PrivateBin** é um pastebin online minimalista e de código aberto onde o servidor tem zero conhecimento de dados colados. Os dados são criptografados/descriptografados no navegador usando AES de 256 bits. Psono suporta compartilhamento seguro de senhas, arquivos, marcadores e e-mails. +![logo PrivateBin](/assets/img/productivity/privatebin.svg){ align=right } + +**PrivateBin** é um pastebin online minimalista e de código aberto onde o servidor tem zero conhecimento de dados colados. Os dados são criptografados/descriptografados no navegador usando AES de 256 bits. Psono suporta compartilhamento seguro de senhas, arquivos, marcadores e e-mails. + +
### Minimum Qualifications diff --git a/i18n/pt/cloud.md b/i18n/pt/cloud.md index 54e2876f..97059f56 100644 --- a/i18n/pt/cloud.md +++ b/i18n/pt/cloud.md @@ -10,30 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -Recomendamos armazenar uma chave de recuperação local em um local seguro, em vez de utilizar a recuperação do iCloud FileVault. question "Looking for Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -43,24 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -78,11 +89,14 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! Considere o auto-hospedagem para mitigar esta ameaça. +
+

This section is new

- ![logo PrivateBin](/assets/img/productivity/privatebin.svg){ align=right } - - **PrivateBin** é um pastebin online minimalista e de código aberto onde o servidor tem zero conhecimento de dados colados. Os dados são criptografados/descriptografados no navegador usando AES de 256 bits. Psono suporta compartilhamento seguro de senhas, arquivos, marcadores e e-mails. +![logo PrivateBin](/assets/img/productivity/privatebin.svg){ align=right } + +**PrivateBin** é um pastebin online minimalista e de código aberto onde o servidor tem zero conhecimento de dados colados. Os dados são criptografados/descriptografados no navegador usando AES de 256 bits. Psono suporta compartilhamento seguro de senhas, arquivos, marcadores e e-mails. + +
### Requisitos mínimos diff --git a/i18n/pt/email-clients.md b/i18n/pt/email-clients.md index 92332682..f9532626 100644 --- a/i18n/pt/email-clients.md +++ b/i18n/pt/email-clients.md @@ -7,38 +7,43 @@ cover: email-clients.webp Nossa lista de recomendações contém clientes de e-mail que suportam tanto [OpenPGP](/encryption/#openpgp) e autenticação forte como [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth permite-lhe utilizar [Multi-Factor Authentication](/multi-factor-authentication) e prevenir o roubo de contas. -Recomendamos armazenar uma chave de recuperação local em um local seguro, em vez de utilizar a recuperação do iCloud FileVault. warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![logótipo Thunderbird](/assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** é um cliente gratuito, de código aberto, email multiplataforma, newsgroup, news feed, e chat (XMPP, IRC, Twitter) desenvolvido pela comunidade Thunderbird, e anteriormente pela Fundação Mozilla. - - [Visite thunderbird.net](https://www.thunderbird.net){ .md-button .md-button--primary } [Política de Privacidade](https://www.mozilla.org/privacy/thunderbird){ .md-button } - - **Downloads*** - - [:fontawesome-brands-windows: Windows](https://www.thunderbird.net) - - [:fontawesome-brands-apple: macOS](https://www.thunderbird.net) - - [:fontawesome-brands-linux: Linux](https://www.thunderbird.net) - - [:pg-flathub: Flatpak](https://flathub.org/apps/details/org.mozilla.Thunderbird) - - [:fontawesome-brands-git: Source](https://hg.mozilla.org/comm-central) downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![logótipo Thunderbird](/assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** é um cliente gratuito, de código aberto, email multiplataforma, newsgroup, news feed, e chat (XMPP, IRC, Twitter) desenvolvido pela comunidade Thunderbird, e anteriormente pela Fundação Mozilla. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Configuração recomendada @@ -63,197 +68,237 @@ Estas opções podem ser encontradas na página *Privacidade & Segurança* confi ### Apple Mail (macOS) -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! Recomendamos que você verifique o [documentação](https://developers.yubico.com/SSH/) de Yubico sobre como configurar isso. +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![logotipo do Mailvelope](/assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** é uma extensão do navegador que permite a troca de e-mails criptografados seguindo o padrão de criptografia OpenPGP. - - [Visite mailvelope.com](https://www.mailvelope.com){ .md-button .md-button--primary } [Política de Privacidade](https://www.mailvelope.com/en/privacy-policy){ .md-button } - - **Downloads*** - - [:fontawesome-brands-firefox: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:fontawesome-brands-chrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:fontawesome-brands-edge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) - - [:fontawesome-brands-github: Source](https://github.com/mailvelope/mailvelope) downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![logotipo do Mailvelope](/assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** é uma extensão do navegador que permite a troca de e-mails criptografados seguindo o padrão de criptografia OpenPGP. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![K-9 Logotipo do correio](/assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail*** é uma aplicação de correio independente que suporta tanto caixas de correio POP3 como IMAP, mas só suporta push mail para IMAP. [Visite k9mail.app](https://k9mail.app){ .md-button .md-button--primary } [Política de Privacidade](https://k9mail.app/privacy){ .md-button } - - **Downloads*** - - [:fontawesome-brands-google-play: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:pg-f-droid: F-Droid](https://f-droid.org/packages/com.fsck.k9) - - [:fontawesome-brands-github: Source](https://github.com/k9mail) - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![K-9 Logotipo do correio](/assets/img/email-clients/k9mail.svg){ align=right } + +**K-9 Mail*** é uma aplicação de correio independente que suporta tanto caixas de correio POP3 como IMAP, mas só suporta push mail para IMAP. [Visite k9mail.app](https://k9mail.app){ .md-button .md-button--primary } [Política de Privacidade](https://k9mail.app/privacy){ .md-button } + +**Downloads*** +- [:fontawesome-brands-google-play: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:pg-f-droid: F-Droid](https://f-droid.org/packages/com.fsck.k9) +- [:fontawesome-brands-github: Source](https://github.com/k9mail) + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![logotipo FairEmail](/assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** é uma aplicação de e-mail de código aberto mínima, utilizando padrões abertos (IMAP, SMTP, OpenPGP) com um baixo consumo de dados e bateria. - - [Visite email.faircode.eu](https://email.faircode.eu){ .md-button .md-button--primary } [Política de Privacidade](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .md-button } - - **Downloads*** - - [:fontawesome-brands-google-play: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:pg-f-droid: F-Droid](https://f-droid.org/packages/eu.faircode.email/) - - [:fontawesome-brands-github: Source](https://github.com/M66B/FairEmail) - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![logotipo FairEmail](/assets/img/email-clients/fairemail.svg){ align=right } -!!! Recomendamos que você verifique o [documentação](https://developers.yubico.com/SSH/) de Yubico sobre como configurar isso. +**FairEmail** é uma aplicação de e-mail de código aberto mínima, utilizando padrões abertos (IMAP, SMTP, OpenPGP) com um baixo consumo de dados e bateria. - ![logo Canary Mail](/assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** é um cliente de e-mail pago concebido para tornar a encriptação end-to-end sem falhas com funcionalidades de segurança, tais como um bloqueio biométrico da aplicação. [Visite canarymail.io](https://canarymail.io){ .md-button .md-button--primary } [Política de Privacidade](https://canarymail.io/privacy.html){ .md-button } - - **Downloads*** - - [:fontawesome-brands-windows: Windows](https://download.canarymail.io/get_windows) - - [:fontawesome-brands-app-store: Mac App Store](https://apps.apple.com/app/id1236045954) - - [:fontawesome-brands-app-store-ios: App Store](https://apps.apple.com/app/id1236045954) - - [:fontawesome-brands-google-play: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +[Visite email.faircode.eu](https://email.faircode.eu){ .md-button .md-button--primary } [Política de Privacidade](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .md-button } + +**Downloads*** +- [:fontawesome-brands-google-play: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:pg-f-droid: F-Droid](https://f-droid.org/packages/eu.faircode.email/) +- [:fontawesome-brands-github: Source](https://github.com/M66B/FairEmail) + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +![logo Canary Mail](/assets/img/email-clients/canarymail.svg){ align=right } + +**Canary Mail** é um cliente de e-mail pago concebido para tornar a encriptação end-to-end sem falhas com funcionalidades de segurança, tais como um bloqueio biométrico da aplicação. [Visite canarymail.io](https://canarymail.io){ .md-button .md-button--primary } [Política de Privacidade](https://canarymail.io/privacy.html){ .md-button } + +**Downloads*** +- [:fontawesome-brands-windows: Windows](https://download.canarymail.io/get_windows) +- [:fontawesome-brands-app-store: Mac App Store](https://apps.apple.com/app/id1236045954) +- [:fontawesome-brands-app-store-ios: App Store](https://apps.apple.com/app/id1236045954) +- [:fontawesome-brands-google-play: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) + +
### Kontact (KDE) -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Framadate **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! Considere o auto-hospedagem para mitigar esta ameaça. +
+

This section is new

- ![logo PrivateBin](/assets/img/productivity/privatebin.svg){ align=right } - - **PrivateBin** é um pastebin online minimalista e de código aberto onde o servidor tem zero conhecimento de dados colados. Os dados são criptografados/descriptografados no navegador usando AES de 256 bits. Psono suporta compartilhamento seguro de senhas, arquivos, marcadores e e-mails. +![logo PrivateBin](/assets/img/productivity/privatebin.svg){ align=right } + +**PrivateBin** é um pastebin online minimalista e de código aberto onde o servidor tem zero conhecimento de dados colados. Os dados são criptografados/descriptografados no navegador usando AES de 256 bits. Psono suporta compartilhamento seguro de senhas, arquivos, marcadores e e-mails. + +
### Minimum Qualifications diff --git a/i18n/pt/financial-services.md b/i18n/pt/financial-services.md index 7f42290f..7f85bfd9 100644 --- a/i18n/pt/financial-services.md +++ b/i18n/pt/financial-services.md @@ -12,39 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -52,11 +61,14 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! Considere o auto-hospedagem para mitigar esta ameaça. +
+

This section is new

- ![logo PrivateBin](/assets/img/productivity/privatebin.svg){ align=right } - - **PrivateBin** é um pastebin online minimalista e de código aberto onde o servidor tem zero conhecimento de dados colados. Os dados são criptografados/descriptografados no navegador usando AES de 256 bits. Psono suporta compartilhamento seguro de senhas, arquivos, marcadores e e-mails. +![logo PrivateBin](/assets/img/productivity/privatebin.svg){ align=right } + +**PrivateBin** é um pastebin online minimalista e de código aberto onde o servidor tem zero conhecimento de dados colados. Os dados são criptografados/descriptografados no navegador usando AES de 256 bits. Psono suporta compartilhamento seguro de senhas, arquivos, marcadores e e-mails. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -67,26 +79,32 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Framadate **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! Considere o auto-hospedagem para mitigar esta ameaça. +
+

This section is new

- ![logo PrivateBin](/assets/img/productivity/privatebin.svg){ align=right } - - **PrivateBin** é um pastebin online minimalista e de código aberto onde o servidor tem zero conhecimento de dados colados. Os dados são criptografados/descriptografados no navegador usando AES de 256 bits. Psono suporta compartilhamento seguro de senhas, arquivos, marcadores e e-mails. +![logo PrivateBin](/assets/img/productivity/privatebin.svg){ align=right } + +**PrivateBin** é um pastebin online minimalista e de código aberto onde o servidor tem zero conhecimento de dados colados. Os dados são criptografados/descriptografados no navegador usando AES de 256 bits. Psono suporta compartilhamento seguro de senhas, arquivos, marcadores e e-mails. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/pt/router.md b/i18n/pt/router.md index a310a6cd..04067444 100644 --- a/i18n/pt/router.md +++ b/i18n/pt/router.md @@ -1,7 +1,7 @@ --- title: "Firmware do router" icon: material/router-wireless -description: Estes sistemas operativos alternativos podem ser utilizados para proteger o seu router ou ponto de acesso Wi-Fi. +description: These alternative operating systems can be used to secure your router or Wi-Fi access point. cover: router.webp --- @@ -9,34 +9,40 @@ Apresentamos alguns sistemas operativos alternativos, que podem ser usados em ro ## OpenWrt -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![Logótipo OpenWrt](assets/img/router/openwrt.svg#only-light){ align=right } - ![Logótipo OpenWrt](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - O **OpenWrt** é um sistema operativo baseado em Linux; é utilizado principalmente em dispositivos incorporados para encaminhar o tráfego de rede. Inclui util-linux, uClibc e BusyBox. Todos os componentes foram otimizados para routers domésticos. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentação} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Código-fonte" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribuir } +![Logótipo OpenWrt](assets/img/router/openwrt.svg#only-light){ align=right } +![Logótipo OpenWrt](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +O **OpenWrt** é um sistema operativo baseado em Linux; é utilizado principalmente em dispositivos incorporados para encaminhar o tráfego de rede. Inclui util-linux, uClibc e BusyBox. Todos os componentes foram otimizados para routers domésticos. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentação} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Código-fonte" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribuir } + + + +
Pode consultar a [tabela de hardware](https://openwrt.org/toh/start) do OpenWrt para verificar se o seu dispositivo é suportado. ## OPNsense -!!! nota - Consulte o [Tabela de Hardware](https://openwrt.org/toh/start) para verificar se o seu dispositivo é suportado. +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. O OPNsense é normalmente implementado como firewall de perímetro, router, ponto de acesso sem fio, servidor DHCP, servidor DNS e ponto terminal de VPN. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentação} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Código-fonte" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribuir } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. O OPNsense é normalmente implementado como firewall de perímetro, router, ponto de acesso sem fio, servidor DHCP, servidor DNS e ponto terminal de VPN. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentação} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Código-fonte" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribuir } + + + +
O OPNsense foi originalmente desenvolvido como um fork de [pfSense](https://en.wikipedia.org/wiki/PfSense), e ambos os projetos são conhecidos por serem distribuições de firewall livres e fiáveis que oferecem funcionalidades muitas vezes apenas encontradas em firewalls comerciais caras. O OPNsense foi lançado em 2015 como fork do pfSense, pelo facto dos seus desenvolvedores terem [detetado](https://docs.opnsense.org/history/thefork.html) uma série de problemas de segurança e qualidade do código produto original, além das preocupações relacionadas com a aquisição maioritária do pfSense pela Netgate, que colocavam dúvidas quanto ao seu futuro. @@ -44,9 +50,12 @@ O OPNsense foi originalmente desenvolvido como um fork de [pfSense](https://en.w **Note que não estamos associados a nenhum dos projetos que recomendamos.** Para além dos [nossos critérios padrão](about/criteria.md), temos um conjunto claro de requisitos que nos permitem fornecer recomendações objetivas. Sugerimos que se familiarize com esta lista antes de optar por um projeto e que desenvolva a sua própria investigação para garantir que se trata da escolha certa para si. -!!! exemplo "Esta secção é nova" +
+

This section is new

- Estamos a trabalhar no sentido de estabelecer critérios para cada secção do nosso site, o que pode originar alterações. Se tiver alguma dúvida sobre os critérios utilizados, por favor [pergunte no nosso fórum] (https://discuss.privacyguides.net/latest) e não parta do princípio de que algo foi excluído das nossas recomendações, caso não esteja listado aqui. São muitos os fatores considerados e discutidos quando recomendamos um projeto, e documentar cada um deles é um trabalho em curso. +Estamos a trabalhar no sentido de estabelecer critérios para cada secção do nosso site, o que pode originar alterações. Se tiver alguma dúvida sobre os critérios utilizados, por favor [pergunte no nosso fórum] (https://discuss.privacyguides.net/latest) e não parta do princípio de que algo foi excluído das nossas recomendações, caso não esteja listado aqui. São muitos os fatores considerados e discutidos quando recomendamos um projeto, e documentar cada um deles é um trabalho em curso. + +
- Deve ser de fonte aberta. - Deve receber atualizações regulares. diff --git a/i18n/ru/android.md b/i18n/ru/android.md index f16ef57d..64476d09 100644 --- a/i18n/ru/android.md +++ b/i18n/ru/android.md @@ -1,14 +1,14 @@ --- -meta_title: "Рекомендации по Android: GrapheneOS и DivestOS - Privacy Guides" +meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" title: "Android" icon: 'simple/android' -description: Вы можете заменить операционную систему на своем Android на эти безопасные и конфиденциальные альтернативы. +description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: - "@context": http://schema.org "@type": WebPage - name: Приватные операционные системы Android + name: Private Android Operating Systems url: "./" - "@context": http://schema.org @@ -16,7 +16,7 @@ schema: name: Android image: /assets/img/android/android.svg url: https://source.android.com/ - sameAs: https://ru.wikipedia.org/wiki/Android + sameAs: https://en.wikipedia.org/wiki/Android_(operating_system) - "@context": http://schema.org "@type": CreativeWork @@ -47,7 +47,7 @@ schema: "@type": Brand name: Google image: /assets/img/android/google-pixel.png - sameAs: https://ru.wikipedia.org/wiki/Google_Pixel + sameAs: https://en.wikipedia.org/wiki/Google_Pixel review: "@type": Review author: @@ -95,26 +95,31 @@ schema: Мы рекомендуем установить на ваше устройство одну из этих кастомных операционных систем Android, перечисленных в порядке предпочтения, в зависимости от совместимости вашего устройства с этими операционными системами. -!!! note "Примечание" +
+

Note

- Устройства с истекшим сроком службы (например устройства с GrapheneOS или с "расширенной поддержкой" CalyxOS) не имеют полных исправлений безопасности (обновлений прошивки) из-за прекращения поддержки OEM-производителем. Эти устройства нельзя считать полностью безопасными, независимо от установленного программного обеспечения. +Устройства с истекшим сроком службы (например устройства с GrapheneOS или с "расширенной поддержкой" CalyxOS) не имеют полных исправлений безопасности (обновлений прошивки) из-за прекращения поддержки OEM-производителем. Эти устройства нельзя считать полностью безопасными, независимо от установленного программного обеспечения. + +
### GrapheneOS -!!! recommendation +
- ![Логотип GrapheneOS](assets/img/android/grapheneos.svg#only-light){ align=right } - ![Логотип GrapheneOS](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** - это лучший выбор для вашей безопасности и конфиденциальности. - - GrapheneOS обеспечивает дополнительное [улучшение безопасности](https://en.wikipedia.org/wiki/Hardening_(computing)) и улучшение конфиденциальности. Она имеет [улучшенный memory allocator] (https://github.com/GrapheneOS/hardened_malloc), сетевые и сенсорные разрешения и другие различные [функции безопасности] (https://grapheneos.org/features). GrapheneOS также поставляется с полными обновлениями прошивки и подписанными сборками, поэтому проверенная загрузка полностью поддерживается. - - [:octicons-home-16: Домашняя страница](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Политика Конфиденциальности" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Документация} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Исходный код" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Поддержать } +![Логотип GrapheneOS](assets/img/android/grapheneos.svg#only-light){ align=right } +![Логотип GrapheneOS](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** - это лучший выбор для вашей безопасности и конфиденциальности. + +GrapheneOS обеспечивает дополнительное [улучшение безопасности](https://en.wikipedia.org/wiki/Hardening_(computing)) и улучшение конфиденциальности. Она имеет [улучшенный memory allocator] (https://github.com/GrapheneOS/hardened_malloc), сетевые и сенсорные разрешения и другие различные [функции безопасности] (https://grapheneos.org/features). GrapheneOS также поставляется с полными обновлениями прошивки и подписанными сборками, поэтому проверенная загрузка полностью поддерживается. + +[:octicons-home-16: Домашняя страница](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Политика Конфиденциальности" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Документация} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Исходный код" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Поддержать } + +
GrapheneOS поддерживает [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), который запускает [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) полностью в песочнице, как любое другое обычное приложение. Это означает, что вы можете использовать преимущества большинства служб Google Play, таких как [push-уведомления](https://firebase.google.com/docs/cloud-messaging/), полностью контролируя их разрешения и доступ, а также ограничивая их определенным [рабочим профилем](os/android-overview.md#work-profile) или [профилем пользователя](os/android-overview.md#user-profiles) по вашему выбору. @@ -124,19 +129,21 @@ GrapheneOS поддерживает [Sandboxed Google Play](https://grapheneos.o ### DivestOS -!!! recommendation +
- ![Логотип DivestOS](assets/img/android/divestos.svg){ align=right } - - **DivestOS** - это лёгкий форк [LineageOS](https://lineageos.org/). - DivestOS наследует многие [поддерживаемые устройства](https://divestos.org/index.php?page=devices&base=LineageOS) от LineageOS. Он имеет подписанные сборки, что делает возможным [verified boot](https://source.android.com/security/verifiedboot) на некоторых не-Pixel устройствах. - - [:octicons-home-16: Домашняя страница](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Сервис Onion" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Политика конфиденциальности" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Документация} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Исходный код" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Поддержать } +![Логотип DivestOS](assets/img/android/divestos.svg){ align=right } + +**DivestOS** - это лёгкий форк [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. Он имеет подписанные сборки, что делает возможным [verified boot](https://source.android.com/security/verifiedboot) на некоторых не-Pixel устройствах. + +[:octicons-home-16: Домашняя страница](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Сервис Onion" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Политика конфиденциальности" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Документация} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Исходный код" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Поддержать } + +
DivestOS имеет автоматизированное ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [исправление](https://gitlab.com/divested-mobile/cve_checker) уязвимостей ядра, меньше проприетарных зависимостей и кастомный [hosts](https://divested.dev/index.php?page=dnsbl) файл. Его улучшенный WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), обеспечивает [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) для всех архитектур и [разделение состояния сети](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), а также получает out-of-bands обновления. DivestOS также включает патчи ядра от GrapheneOS и включает все доступные функции безопасности ядра с помощью [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). Все ядра новее версии 3.4 включают полную [очистку](https://lwn.net/Articles/334747/) страницы и все ~22 Clang-компилированных ядра активируют [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471). @@ -144,11 +151,14 @@ DivestOS имеет автоматизированное ([CVE](https://en.wikip DivestOS использует F-Droid в качестве магазина приложений по умолчанию. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. Для других приложений по-прежнему действуют рекомендованные нами способы их получения. -!!! warning "Осторожно" +
+

Предупреждение

- [Статус](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) обновлений прошивки DivestOS и контроль качества варьируются в зависимости от поддерживаемых устройств. Мы по-прежнему рекомендуем GrapheneOS, если ваш телефон её поддерживает. Для других устройств хорошей альтернативой является DivestOS. - - Не все поддерживаемые устройства имеют функцию проверенной загрузки, а некоторые выполняют ее лучше, чем другие. +[Статус](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) обновлений прошивки DivestOS и контроль качества варьируются в зависимости от поддерживаемых устройств. Мы по-прежнему рекомендуем GrapheneOS, если ваш телефон её поддерживает. Для других устройств хорошей альтернативой является DivestOS. + +Не все поддерживаемые устройства имеют функцию проверенной загрузки, а некоторые выполняют ее лучше, чем другие. + +
## Android-устройства @@ -156,7 +166,7 @@ DivestOS использует F-Droid в качестве магазина пр Избегайте покупки телефонов у операторов мобильной связи. У них часто **заблокирован загрузчик** и они не поддерживают [OEM разблокировку](https://source.android.com/devices/bootloader/locking_unlocking). Эти варианты телефонов не позволят вам установить какой-либо альтернативный дистрибутив Android. -Будьте **очень осторожны** при покупке подержанных телефонов в интернет-магазинах. Всегда проверяйте репутацию продавца. Если устройство украдено, существует вероятность [внесения его IMEI в черный список](https://www.gsma.com/security/resources/imei-blacklisting/). Также существует риск связывания вас с действиями предыдущего владельца устройства. +Будьте **очень осторожны** при покупке подержанных телефонов в интернет-магазинах. Всегда проверяйте репутацию продавца. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). Также существует риск связывания вас с действиями предыдущего владельца устройства. Еще несколько советов относительно устройств Android и совместимости с операционной системой: @@ -168,15 +178,17 @@ DivestOS использует F-Droid в качестве магазина пр Телефоны Google Pixel - это **единственные** устройства, которые мы рекомендуем к покупке. Телефоны Pixel имеют более высокий уровень аппаратной безопасности, чем любые другие устройства Android, представленные в настоящее время на рынке, благодаря надлежащей поддержке AVB для сторонних операционных систем и кастомным чипам безопасности Google [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html), выступающим в качестве элемента безопасности. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - Устройства **Google Pixel** известны хорошей безопасностью и правильной поддержкой [Verified Boot](https://source.android.com/security/verifiedboot), даже при установке сторонних операционных систем. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Магазин](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +Устройства **Google Pixel** известны хорошей безопасностью и правильной поддержкой [Verified Boot](https://source.android.com/security/verifiedboot), даже при установке сторонних операционных систем. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Магазин](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Элементы безопасности, такие как Titan M2, более ограничены, чем процессорная Trusted Execution Environment, используемая в большинстве других телефонов, поскольку они используются только для хранения секретов, аппаратной аттестации и ограничения скорости, а не для запуска "доверенных" программ. Телефоны без защищенного элемента вынуждены использовать TEE для *всех* этих функций, что приводит к увеличению поверхности атаки. @@ -198,43 +210,53 @@ Google Pixel phones use a TEE OS called Trusty which is [open source](https://so ### Shelter -!!! recommendation +
- ![Логотип Shelter](assets/img/android/shelter.svg){ align=right } - - **Shelter** - это приложение, которое поможет вам использовать функциональность рабочего профиля Android для изоляции или дублирования приложений на вашем устройстве. - - Shelter поддерживает блокировку поиска контактов между профилями и обмен файлами между профилями через файловый менеджер по умолчанию ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Репозиторий](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Исходный код" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Поддержать } +![Логотип Shelter](assets/img/android/shelter.svg){ align=right } -!!! warning "Осторожно" +**Shelter** - это приложение, которое поможет вам использовать функциональность рабочего профиля Android для изоляции или дублирования приложений на вашем устройстве. - Shelter рекомендуется вместо [Insular](https://secure-system.gitlab.io/Insular/) и [Island](https://github.com/oasisfeng/island), так как поддерживает [блокировку поиска контактов](https://secure-system.gitlab.io/Insular/faq.html). - - Используя Shelter, вы полностью доверяете его разработчику, поскольку Shelter действует как [администратор устройства](https://developer.android.com/guide/topics/admin/device-admin) для создания рабочего профиля и имеет широкий доступ к данным, хранящимся в рабочем профиле. +Shelter поддерживает блокировку поиска контактов между профилями и обмен файлами между профилями через файловый менеджер по умолчанию ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Репозиторий](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Исходный код" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Поддержать } + +
+ +
+

Предупреждение

+ +Shelter рекомендуется вместо [Insular](https://secure-system.gitlab.io/Insular/) и [Island](https://github.com/oasisfeng/island), так как поддерживает [блокировку поиска контактов](https://secure-system.gitlab.io/Insular/faq.html). + +Используя Shelter, вы полностью доверяете его разработчику, поскольку Shelter действует как [администратор устройства](https://developer.android.com/guide/topics/admin/device-admin) для создания рабочего профиля и имеет широкий доступ к данным, хранящимся в рабочем профиле. + +
### Secure Camera -!!! recommendation +
- ![Логотип Secure camera](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Логотип Secure camera](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** - это приложение камеры, ориентированное на конфиденциальность и безопасность, которое может снимать изображения, видео и сканировать QR-коды. Расширения производителя CameraX (Портрет, HDR, Ночное зрение, Ретушь лица и Авто) также поддерживаются на доступных устройствах. - - [:octicons-repo-16: Репозиторий](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Документация} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Исходный код" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Поддержать } - - ??? downloads "Скачать" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Логотип Secure camera](assets/img/android/secure_camera.svg#only-light){ align=right } +![Логотип Secure camera](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** - это приложение камеры, ориентированное на конфиденциальность и безопасность, которое может снимать изображения, видео и сканировать QR-коды. Расширения производителя CameraX (Портрет, HDR, Ночное зрение, Ретушь лица и Авто) также поддерживаются на доступных устройствах. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Основные функции конфиденциальности: @@ -242,50 +264,63 @@ Google Pixel phones use a TEE OS called Trusty which is [open source](https://so - Использование нового API [Media](https://developer.android.com/training/data-storage/shared/media), поэтому разрешения [на память](https://developer.android.com/training/data-storage) не требуются - Разрешение на микрофон не требуется, если вы не хотите записывать звук -!!! note "Примечание" +
+

Note

- В настоящее время метаданные не удаляются из видео, но эта функция запланирована. - - Метаданные об ориентации изображения не удаляются. Если вы включите функцию определения местоположения (в Secure Camera), эта запись также **не будет** удалена. Если вы хотите удалить его позже, вам нужно будет использовать стороннее приложение, такое как [ExifEraser](data-redaction.md#exiferaser). +В настоящее время метаданные не удаляются из видео, но эта функция запланирована. + +Метаданные об ориентации изображения не удаляются. Если вы включите функцию определения местоположения (в Secure Camera), эта запись также **не будет** удалена. Если вы хотите удалить его позже, вам нужно будет использовать стороннее приложение, такое как [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Логотип Secure PDF Viewer](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Логотип Secure PDF Viewer](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** - это программа просмотра PDF, основанная на [pdf.js](https://en.wikipedia.org/wiki/PDF.js), которая не требует никаких разрешений. PDF открывается в [песочнице](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). Это означает, что для доступа к содержимому или файлам не требуется прямого разрешения. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) используется для обеспечения того, чтобы JavaScript и свойства стиля в WebView были полностью статическим содержимым. - - [:octicons-repo-16: Репозиторий](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Исходный код" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Поддержать } - - ??? downloads "Скачать" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Логотип Secure PDF Viewer](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Логотип Secure PDF Viewer](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** - это программа просмотра PDF, основанная на [pdf.js](https://en.wikipedia.org/wiki/PDF.js), которая не требует никаких разрешений. PDF открывается в [песочнице](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). Это означает, что для доступа к содержимому или файлам не требуется прямого разрешения. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) используется для обеспечения того, чтобы JavaScript и свойства стиля в WebView были полностью статическим содержимым. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Скачивание приложений ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ Obtainium allows you to download APK installer files from a wide variety of sour Для входа в Google Play Store требуется учетная запись Google, что не лучшим образом сказывается на конфиденциальности. Это можно обойти, используя альтернативный клиент, например, Aurora Store. -!!! recommendation +
- ![Логотип Aurora Store](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** - это клиент Google Play Store, которому для загрузки приложений не требуется учетная запись Google, службы Google Play Services или microG. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads "Скачать" - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Логотип Aurora Store](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** - это клиент Google Play Store, которому для загрузки приложений не требуется учетная запись Google, службы Google Play Services или microG. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store не позволяет загружать платные приложения через анонимный аккаунт. Для загрузки купленных вами раннее приложений в Aurora Store можно, по желанию, залогиниться с учетной записью Google, что дает доступ к списку установленных приложений в Google, однако вы все равно получаете преимущество, поскольку вам не требуется полный клиент Google Play и службы Google Play Services или microG на вашем устройстве. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- В некоторых редких случаях разработчик приложения будет распространять его только через F-Droid ([Gadgetbridge](https://gadgetbridge.org/) - один из примеров этого). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +В некоторых редких случаях разработчик приложения будет распространять его только через F-Droid ([Gadgetbridge](https://gadgetbridge.org/) - один из примеров этого). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Критерии **Обрати внимание, что у нас нет связей ни с одним проектом, который мы рекомендуем.** В дополнение к [нашим стандартным критериям](about/criteria.md) мы разработали четкий набор требований, позволяющий давать объективные рекомендации. Перед тем, как вы решите выбрать какой-либо проект, мы рекомендуем вам ознакомиться со списком критериев и провести собственное исследование, чтобы убедиться в правильности своего выбора. -!!! example "Это новый раздел" +
+

This section is new

- Мы всё еще работаем над установлением критериев для каждого раздела нашего сайта, поэтому они могут поменяться в будущем. Если у вас есть вопросы по поводу наших критериев, пожалуйста, [задавайте их на нашем форуме](https://discuss.privacyguides.net/latest). Если какой-то критерий здесь не указан, это не значит, что мы его не учли. Перед тем, как рекомендовать какой-либо проект мы учитываем и обсуждаем множество факторов. Документирование этих факторов ещё не завершено. +Мы всё еще работаем над установлением критериев для каждого раздела нашего сайта, поэтому они могут поменяться в будущем. Если у вас есть вопросы по поводу наших критериев, пожалуйста, [задавайте их на нашем форуме](https://discuss.privacyguides.net/latest). Если какой-то критерий здесь не указан, это не значит, что мы его не учли. Перед тем, как рекомендовать какой-либо проект мы учитываем и обсуждаем множество факторов. Документирование этих факторов ещё не завершено. + +
### Операционные системы diff --git a/i18n/ru/calendar.md b/i18n/ru/calendar.md index d43609f9..44dbdb6a 100644 --- a/i18n/ru/calendar.md +++ b/i18n/ru/calendar.md @@ -1,7 +1,7 @@ --- title: "Синхронизация календаря" icon: material/calendar -description: Календари хранят часть ваших самых конфиденциальных данных; используйте приложения, которые хранят ваши данные в зашифрованном виде. +description: Calendars contain some of your most sensitive data; use products that implement encryption at rest. cover: calendar.webp --- @@ -9,48 +9,58 @@ cover: calendar.webp ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Создание нескольких календарей и расширенный совместный доступ доступны только платным подписчикам. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Создание нескольких календарей и расширенный совместный доступ доступны только платным подписчикам. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** - это зашифрованный календарь, доступный пользователям Proton через мобильные и веб-клиенты. Среди его функций: автоматическое шифрование всех данных, совместный доступ, импорт/экспорт данных и [другие функции](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Расширенные функции совместного доступа также доступны только по подписке. - - [:octicons-home-16: Домашняя страница](https://proton.me/ru/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/ru/legal/privacy){ .card-link title="Политика конфиденциальности" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Документация} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Исходный код" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** - это зашифрованный календарь, доступный пользователям Proton через мобильные и веб-клиенты. Среди его функций: автоматическое шифрование всех данных, совместный доступ, импорт/экспорт данных и [другие функции](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Расширенные функции совместного доступа также доступны только по подписке. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Обрати внимание, что у нас нет связей ни с одним проектом, который мы рекомендуем.** В дополнение к [нашим стандартным критериям](about/criteria.md) мы разработали четкий набор требований, позволяющий давать объективные рекомендации. Перед тем, как вы решите выбрать какой-либо проект, мы рекомендуем вам ознакомиться со списком критериев и провести собственное исследование, чтобы убедиться в правильности своего выбора. -!!! example "Это новый раздел" +
+

This section is new

- Мы всё еще работаем над установлением критериев для каждого раздела нашего сайта, поэтому они могут поменяться в будущем. Если у вас есть вопросы по поводу наших критериев, пожалуйста, [задавайте их на нашем форуме](https://discuss.privacyguides.net/latest). Если какой-то критерий здесь не указан, это не значит, что мы его не учли. Перед тем, как рекомендовать какой-либо проект мы учитываем и обсуждаем множество факторов. Документирование этих факторов ещё не завершено. +Мы всё еще работаем над установлением критериев для каждого раздела нашего сайта, поэтому они могут поменяться в будущем. Если у вас есть вопросы по поводу наших критериев, пожалуйста, [задавайте их на нашем форуме](https://discuss.privacyguides.net/latest). Если какой-то критерий здесь не указан, это не значит, что мы его не учли. Перед тем, как рекомендовать какой-либо проект мы учитываем и обсуждаем множество факторов. Документирование этих факторов ещё не завершено. + +
### Минимальные требования diff --git a/i18n/ru/cloud.md b/i18n/ru/cloud.md index 1a06ebc7..b4594831 100644 --- a/i18n/ru/cloud.md +++ b/i18n/ru/cloud.md @@ -10,30 +10,37 @@ cover: cloud.webp Если эти альтернативы не соответствуют вашим потребностям, мы предлагаем вам рассмотреть возможность использования программного обеспечения для шифрования, например, [Cryptomator](encryption.md#cryptomator-cloud) с другими облачными хранилищами. Использование Cryptomator в сочетании с **любым** облачным хранилищем (включая эти) может быть хорошей идеей для снижения риска ошибок шифрования в собственных клиентах провайдера. -??? question "Ищете Nextcloud?" +
+Looking for Nextcloud? - Nextcloud по-прежнему является [рекомендуем инструментом](productivity.md) для самостоятельного хостинга, но мы не рекомендуем использование сторонних провайдеров хранилища Nextcloud, так как - мы [не рекомендуем](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) встроенное в Nextcloud E2EE для домашнего использования. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Логотип Proton Drive](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** - швейцарское зашифрованное облачных хранилищ от популярного провайдера зашифрованной электронной почты [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Домашняя страница](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Политика конфиденциальности" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Документация} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Исходный код" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Логотип Proton Drive](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** - швейцарское зашифрованное облачных хранилищ от популярного провайдера зашифрованной электронной почты [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
Веб-приложение Proton Drive прошло независимый аудит компании Securitum в [2021 году](https://proton.me/blog/security-audit-all-proton-apps), полные подробности не были предоставлены, но в аттестационном письме Securitum говорится: @@ -43,23 +50,28 @@ cover: cloud.webp ## Tresorit -!!! recommendation +
- ![Логотип Tresorit](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** - швейцарско-венгерский провайдер зашифрованных облачных хранилищ, основанный в 2011 году. Tresorit принадлежит Swiss Post, национальной почтовой службе Швейцарии. - - [:octicons-home-16: Домашняя страница](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Политика конфиденциальности" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Документация} - - ??? downloads "Скачать" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Логотип Tresorit](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** - швейцарско-венгерский провайдер зашифрованных облачных хранилищ, основанный в 2011 году. Tresorit принадлежит Swiss Post, национальной почтовой службе Швейцарии. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Компания Tresorit прошла ряд независимых аудитов безопасности: @@ -77,9 +89,12 @@ cover: cloud.webp **Обрати внимание, что у нас нет связей ни с одним проектом, который мы рекомендуем.** В дополнение к [нашим стандартным критериям](about/criteria.md) мы разработали четкий набор требований, позволяющий давать объективные рекомендации. Перед тем, как вы решите выбрать какой-либо проект, мы рекомендуем вам ознакомиться со списком критериев и провести собственное исследование, чтобы убедиться в правильности своего выбора. -!!! example "Это новый раздел" +
+

This section is new

- Мы всё еще работаем над установлением критериев для каждого раздела нашего сайта, поэтому они могут поменяться в будущем. Если у вас есть вопросы по поводу наших критериев, пожалуйста, [задавайте их на нашем форуме](https://discuss.privacyguides.net/latest). Если какой-то критерий здесь не указан, это не значит, что мы его не учли. Перед тем, как рекомендовать какой-либо проект мы учитываем и обсуждаем множество факторов. Документирование этих факторов ещё не завершено. +Мы всё еще работаем над установлением критериев для каждого раздела нашего сайта, поэтому они могут поменяться в будущем. Если у вас есть вопросы по поводу наших критериев, пожалуйста, [задавайте их на нашем форуме](https://discuss.privacyguides.net/latest). Если какой-то критерий здесь не указан, это не значит, что мы его не учли. Перед тем, как рекомендовать какой-либо проект мы учитываем и обсуждаем множество факторов. Документирование этих факторов ещё не завершено. + +
### Минимальные требования diff --git a/i18n/ru/email-clients.md b/i18n/ru/email-clients.md index b52b989a..1df7451f 100644 --- a/i18n/ru/email-clients.md +++ b/i18n/ru/email-clients.md @@ -1,41 +1,49 @@ --- title: "Почтовые клиенты" icon: material/email-open -description: Эти почтовые клиенты соблюдают конфиденциальность и поддерживают шифрование электронной почты OpenPGP. +description: These email clients are privacy-respecting and support OpenPGP email encryption. cover: email-clients.webp --- Наш список рекомендаций содержит только почтовые клиенты, которые поддерживают [OpenPGP](/encryption/#openpgp) и безопасную аутентификацию (например, [OAuth](https://ru.wikipedia.org/wiki/OAuth)). OAuth позволяет использовать [многофакторную аутентификацию](basics/multi-factor-authentication.md) и предотвратить кражу учетных записей. -??? warning "Электронная почта не обеспечивает прямую секретность" +
+Email does not provide forward secrecy - При использовании технологии сквозного шифрования (E2EE), например OpenPGP, электронная почта все равно будет содержать [некоторые метаданные](email.md#email-metadata-overview), которые не зашифрованы в заголовке письма. - - OpenPGP также не поддерживает прямую секретность](https://ru.wikipedia.org/wiki/Perfect_forward_secrecy), что означает: если ваш приватный ключ или приватный ключ получателя будет украден, то все предыдущие сообщения, зашифрованные с его помощью, будут раскрыты: [Как защитить мои приватные ключи?](basics/email-security.md) Рассмотрите возможность использования среды, обеспечивающей прямую секретность: - - [Связь в реальном времени](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Кросс-платформенные приложения ### Thunderbird -!!! recommendation +
- ![Логотип Thunderbird](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** - бесплатный кроссплатформенный клиент электронной почты, новостных лент и чатов (XMPP, IRC, Twitter) с открытым исходным кодом, разработанный сообществом Thunderbird, а ранее - Mozilla Foundation. - - [:octicons-home-16: Домашняя страница](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Политика конфиденциальности" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Документация} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Исходный код" } - - ??? downloads "Скачать" - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Логотип Thunderbird](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** - бесплатный кроссплатформенный клиент электронной почты, новостных лент и чатов (XMPP, IRC, Twitter) с открытым исходным кодом, разработанный сообществом Thunderbird, а ранее - Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Рекомендованные настройки @@ -60,169 +68,217 @@ cover: email-clients.webp ### Почта Apple (macOS) -!!! recommendation +
- ![Логотип Apple Mail](assets/img/email-clients/applemail.png){ align=right } - - **Почта Apple** входит в состав macOS и может быть расширен поддержкой OpenPGP с помощью [GPG Suite](encryption.md#gpg-suite), что добавляет возможность отправлять зашифрованную PGP электронную почту. - - [:octicons-home-16: Домашняя страница](https://support.apple.com/ru-ru/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/ru/legal/privacy/ru/){ .card-link title="Политика конфиденциальности" } - [:octicons-info-16:](https://support.apple.com/ru-ru/mail){ .card-link title=Документация} +![Логотип Apple Mail](assets/img/email-clients/applemail.png){ align=right } + +**Почта Apple** входит в состав macOS и может быть расширен поддержкой OpenPGP с помощью [GPG Suite](encryption.md#gpg-suite), что добавляет возможность отправлять зашифрованную PGP электронную почту. + +[:octicons-home-16: Домашняя страница](https://support.apple.com/ru-ru/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/ru/legal/privacy/ru/){ .card-link title="Политика конфиденциальности" } +[:octicons-info-16:](https://support.apple.com/ru-ru/mail){ .card-link title=Документация} + + + +
Почта Apple имеет возможность загружать удаленный контент в фоновом режиме или полностью блокировать его и скрывать ваш IP-адрес от отправителей на [macOS](https://support.apple.com/ru-ru/guide/mail/mlhl03be2866/mac) и [iOS](https://support.apple.com/ru-ru/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Логотип Canary Mail](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** - это платный почтовый клиент, разработанный для обеспечения сквозного шифрования с такими функциями безопасности, как биометрическая блокировка приложений. - - [:octicons-home-16: Домашняя страница](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Политика конфиденциальности" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Документация} - - ??? downloads "Скачать" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Логотип Canary Mail](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning "Осторожно" +**Canary Mail** - это платный почтовый клиент, разработанный для обеспечения сквозного шифрования с такими функциями безопасности, как биометрическая блокировка приложений. - Canary Mail только недавно выпустила клиенты для Windows и Android. Мы считаем, что они не настолько стабильные, как клиенты для iOS и Mac. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Предупреждение + +Canary Mail только недавно выпустила клиенты для Windows и Android. Мы считаем, что они не настолько стабильные, как клиенты для iOS и Mac. + +
Canary Mail имеет закрытый исходный код. Мы рекомендуем его из-за небольшого выбора почтовых клиентов на iOS, поддерживающих PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![Логотип FairEmail](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** - это небольшое приложение электронной почты с открытым исходным кодом, использующее открытые стандарты (IMAP, SMTP, OpenPGP) с низким потреблением данных и заряда батареи. - - [:octicons-home-16: Домашняя страница](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Политика конфиденциальности" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Документация} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Исходный код" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Поддержать } - - ??? downloads "Скачать" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![Логотип FairEmail](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** - это небольшое приложение электронной почты с открытым исходным кодом, использующее открытые стандарты (IMAP, SMTP, OpenPGP) с низким потреблением данных и заряда батареи. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Логотип Evolution](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** — это приложение для управления персональной информацией, которое обеспечивает интегрированную почту, календарь и функциональность адресной книги. Evolution имеет подробную [документацию](https://help.gnome.org/users/evolution/stable/), чтобы помочь вам начать работу. - - [:octicons-home-16: Домашняя страница](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Политика конфиденциальности" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Документация} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Исходный код" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Поддержать } - - ??? downloads "Скачать" - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Логотип Evolution](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** — это приложение для управления персональной информацией, которое обеспечивает интегрированную почту, календарь и функциональность адресной книги. Evolution имеет подробную [документацию](https://help.gnome.org/users/evolution/stable/), чтобы помочь вам начать работу. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![логотип K-9 Mail](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** — это независимое почтовое приложение, которое поддерживает как POP3, так и IMAP, но поддерживает только push-почту для IMAP. - - В будущем, K-9 Mail станет [официальным](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) клиентом Thunderbird для Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![логотип K-9 Mail](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning "Осторожно" +**K-9 Mail** — это независимое почтовое приложение, которое поддерживает как POP3, так и IMAP, но поддерживает только push-почту для IMAP. - Когда вы отвечаете кому-то на письмо, отправленное сразу нескольким людям, поле с получателем может также содержать несколько адресов. Более подробную информацию можно найти тут [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +В будущем, K-9 Mail станет [официальным](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) клиентом Thunderbird для Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Предупреждение

+ +Когда вы отвечаете кому-то на письмо, отправленное сразу нескольким людям, поле с получателем может также содержать несколько адресов. Более подробную информацию можно найти тут [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Логотип Kontact](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** - это менеджер персональной информации от проекта [KDE](https://kde.org). Он предоставляет почтовый клиент, адресную книгу, органайзер и клиент RSS. - - [:octicons-home-16: Домашняя страница](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Политика конфиденциальности" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Документация} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Исходный код" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Поддержать } - - ??? downloads "Скачать" - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Логотип Kontact](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** - это менеджер персональной информации от проекта [KDE](https://kde.org). Он предоставляет почтовый клиент, адресную книгу, органайзер и клиент RSS. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Браузер) -!!! recommendation +
- ![Логотип Mailvelope](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** - это расширение для браузера, позволяющее обмениваться зашифрованными электронными письмами в соответствии со стандартом шифрования OpenPGP. - - [:octicons-home-16: Домашняя страница](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Политика конфиденциальности" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Документация} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Исходный код" } - - ??? downloads "Скачать" - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Логотип Mailvelope](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** - это расширение для браузера, позволяющее обмениваться зашифрованными электронными письмами в соответствии со стандартом шифрования OpenPGP. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (Командная строка) -!!! recommendation +
- ![Логотип NeoMutt](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** - это читалка почты (или MUA) для командной строки с открытым исходным кодом для Linux и BSD. Это форк [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) с добавленными возможностями. - - Neomut - это текстовый клиент, которым сложно научиться пользоваться. Тем не менее он очень кастомизируемый. - - [:octicons-home-16: Домашняя страница](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Документация} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Исходный код" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Поддержать } - - ??? downloads "Скачать" - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![Логотип NeoMutt](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** - это читалка почты (или MUA) для командной строки с открытым исходным кодом для Linux и BSD. Это форк [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) с добавленными возможностями. + +Neomut - это текстовый клиент, которым сложно научиться пользоваться. Тем не менее он очень кастомизируемый. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Критерии **Обрати внимание, что у нас нет связей ни с одним проектом, который мы рекомендуем.** В дополнение к [нашим стандартным критериям](about/criteria.md) мы разработали четкий набор требований, позволяющий давать объективные рекомендации. Перед тем, как вы решите выбрать какой-либо проект, мы рекомендуем вам ознакомиться со списком критериев и провести собственное исследование, чтобы убедиться в правильности своего выбора. -!!! example "Это новый раздел" +
+

This section is new

- Мы всё еще работаем над установлением критериев для каждого раздела нашего сайта, поэтому они могут поменяться в будущем. Если у вас есть вопросы по поводу наших критериев, пожалуйста, [задавайте их на нашем форуме](https://discuss.privacyguides.net/latest). Если какой-то критерий здесь не указан, это не значит, что мы его не учли. Перед тем, как рекомендовать какой-либо проект мы учитываем и обсуждаем множество факторов. Документирование этих факторов ещё не завершено. +Мы всё еще работаем над установлением критериев для каждого раздела нашего сайта, поэтому они могут поменяться в будущем. Если у вас есть вопросы по поводу наших критериев, пожалуйста, [задавайте их на нашем форуме](https://discuss.privacyguides.net/latest). Если какой-то критерий здесь не указан, это не значит, что мы его не учли. Перед тем, как рекомендовать какой-либо проект мы учитываем и обсуждаем множество факторов. Документирование этих факторов ещё не завершено. + +
### Минимальные требования diff --git a/i18n/ru/financial-services.md b/i18n/ru/financial-services.md index 5c9ca518..d099c105 100644 --- a/i18n/ru/financial-services.md +++ b/i18n/ru/financial-services.md @@ -12,37 +12,48 @@ cover: financial-services.webp Существует ряд служб, предоставляющих "виртуальные дебетовые карты", которые вы можете использовать в интернет-магазинах, не раскрывая в большинстве случаев свою реальную банковскую или платежную информацию. Важно отметить, что эти финансовые услуги **не** анонимны и подчиняются законам "Знай своего клиента" (KYC) и могут потребовать от вас удостоверение личности или другую идентифицирующую информацию. Эти услуги в первую очередь полезны для защиты от утечки данных продавцов, менее сложного отслеживания или корреляции покупок маркетинговыми агентствами и кражи данных в интернете; но **не** для совершения покупки полностью анонимно. -!!! tip "Проверьте ваш текущий банк" +
+

Check your current bank

- Многие банки и поставщики кредитных карт предлагают встроенные функции виртуальных карт. Если вы уже используете провайдера, который предоставляет такую возможность, в большинстве случаев следует использовать его вместо следующих рекомендаций. Таким образом, вы не доверяете свою личную информацию нескольким лицам. +Многие банки и поставщики кредитных карт предлагают встроенные функции виртуальных карт. Если вы уже используете провайдера, который предоставляет такую возможность, в большинстве случаев следует использовать его вместо следующих рекомендаций. Таким образом, вы не доверяете свою личную информацию нескольким лицам. + +
### Privacy.com (США) -!!! recommendation +
- ![Логотип Privacy.com](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Логотип Privacy.com](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - Бесплатный тарифный план **Privacy.com** позволяет создавать до 12 виртуальных карт в месяц, устанавливать лимиты расходов по этим картам и мгновенно отключать карты. Платный тарифный план позволяет создавать до 36 карт в месяц, получать 1% кэшбэка за покупки и скрывать информацию о транзакциях от вашего банка. - - [:octicons-home-16: Домашняя страница](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Политика конфиденциальности" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Документация} +![Логотип Privacy.com](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Логотип Privacy.com](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +Бесплатный тарифный план **Privacy.com** позволяет создавать до 12 виртуальных карт в месяц, устанавливать лимиты расходов по этим картам и мгновенно отключать карты. Платный тарифный план позволяет создавать до 36 карт в месяц, получать 1% кэшбэка за покупки и скрывать информацию о транзакциях от вашего банка. + +[:octicons-home-16: Домашняя страница](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Политика конфиденциальности" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Документация} + + + +
Privacy.com по умолчанию передает информацию о продавцах, у которых вы совершаете покупки, в ваш банк. Их платная функция "скрытых продавцов" скрывает информацию о продавцах от вашего банка, так что ваш банк видит только то, что покупка была сделана с помощью Privacy.com, но не то, куда были потрачены деньги, однако это не является надежной защитой, и, конечно, Privacy.com все равно имеет информацию о продавцах, у которых вы тратите деньги. ### MySudo (США, платно) -!!! recommendation +
- ![Логотип MySudo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![Логотип MySudo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** предоставляет до 9 виртуальных карт в зависимости от приобретенного вами тарифного плана. Их платные тарифные планы дополнительно включают функциональность, которая может быть полезна для совершения покупок в приватном порядке, например, виртуальные номера телефонов и адреса электронной почты, хотя для широкого использования псевдонимов электронной почты мы обычно рекомендуем других [провайдеров псевдонимов электронной почты](email.md). - - [:octicons-home-16: Домашняя страница](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Политика конфиденциальности" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Документация} +![Логотип MySudo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![Логотип MySudo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** предоставляет до 9 виртуальных карт в зависимости от приобретенного вами тарифного плана. Их платные тарифные планы дополнительно включают функциональность, которая может быть полезна для совершения покупок в приватном порядке, например, виртуальные номера телефонов и адреса электронной почты, хотя для широкого использования псевдонимов электронной почты мы обычно рекомендуем других [провайдеров псевдонимов электронной почты](email.md). + +[:octicons-home-16: Домашняя страница](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Политика конфиденциальности" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Документация} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Обрати внимание, что у нас нет связей ни с одним проектом, который мы рекомендуем.** В дополнение к [нашим стандартным критериям](about/criteria.md) мы разработали четкий набор требований, позволяющий давать объективные рекомендации. Перед тем, как вы решите выбрать какой-либо проект, мы рекомендуем вам ознакомиться со списком критериев и провести собственное исследование, чтобы убедиться в правильности своего выбора. -!!! example "Это новый раздел" +
+

This section is new

- Мы всё еще работаем над установлением критериев для каждого раздела нашего сайта, поэтому они могут поменяться в будущем. Если у вас есть вопросы по поводу наших критериев, пожалуйста, [задавайте их на нашем форуме](https://discuss.privacyguides.net/latest). Если какой-то критерий здесь не указан, это не значит, что мы его не учли. Перед тем, как рекомендовать какой-либо проект мы учитываем и обсуждаем множество факторов. Документирование этих факторов ещё не завершено. +Мы всё еще работаем над установлением критериев для каждого раздела нашего сайта, поэтому они могут поменяться в будущем. Если у вас есть вопросы по поводу наших критериев, пожалуйста, [задавайте их на нашем форуме](https://discuss.privacyguides.net/latest). Если какой-то критерий здесь не указан, это не значит, что мы его не учли. Перед тем, как рекомендовать какой-либо проект мы учитываем и обсуждаем множество факторов. Документирование этих факторов ещё не завершено. + +
- Позволяет создавать несколько карт, которые выполняют функцию щита между продавцом и вашими личными финансами. - Карты не должны требовать от вас предоставления продавцу точной информации об адресе для выставления счетов. @@ -63,23 +77,30 @@ MySudo's virtual cards are currently only available via their iOS app. ### CoinCards -!!! recommendation +
- ![Логотип CoinCards](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (доступна в США и Канаде) позволяет приобретать подарочные карты для большого количества продавцов. - - [:octicons-home-16: Домашняя страница](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Политика конфиденциальности" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Документация} +![Логотип CoinCards](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (доступна в США и Канаде) позволяет приобретать подарочные карты для большого количества продавцов. + +[:octicons-home-16: Домашняя страница](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Политика конфиденциальности" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Документация} + + + +
### Критерии **Обрати внимание, что у нас нет связей ни с одним проектом, который мы рекомендуем.** В дополнение к [нашим стандартным критериям](about/criteria.md) мы разработали четкий набор требований, позволяющий давать объективные рекомендации. Перед тем, как вы решите выбрать какой-либо проект, мы рекомендуем вам ознакомиться со списком критериев и провести собственное исследование, чтобы убедиться в правильности своего выбора. -!!! example "Это новый раздел" +
+

This section is new

- Мы всё еще работаем над установлением критериев для каждого раздела нашего сайта, поэтому они могут поменяться в будущем. Если у вас есть вопросы по поводу наших критериев, пожалуйста, [задавайте их на нашем форуме](https://discuss.privacyguides.net/latest). Если какой-то критерий здесь не указан, это не значит, что мы его не учли. Перед тем, как рекомендовать какой-либо проект мы учитываем и обсуждаем множество факторов. Документирование этих факторов ещё не завершено. +Мы всё еще работаем над установлением критериев для каждого раздела нашего сайта, поэтому они могут поменяться в будущем. Если у вас есть вопросы по поводу наших критериев, пожалуйста, [задавайте их на нашем форуме](https://discuss.privacyguides.net/latest). Если какой-то критерий здесь не указан, это не значит, что мы его не учли. Перед тем, как рекомендовать какой-либо проект мы учитываем и обсуждаем множество факторов. Документирование этих факторов ещё не завершено. + +
- Принимает оплату в [рекомендуемой криптовалюте](cryptocurrency.md). - Не требуется удостоверение личности. diff --git a/i18n/ru/router.md b/i18n/ru/router.md index e1ab42c2..9941bc58 100644 --- a/i18n/ru/router.md +++ b/i18n/ru/router.md @@ -1,7 +1,7 @@ --- title: "Прошивки для роутера" icon: material/router-wireless -description: Эти альтернативные операционные системы могут использоваться для защиты маршрутизатора или точки доступа Wi-Fi. +description: These alternative operating systems can be used to secure your router or Wi-Fi access point. cover: router.webp --- @@ -9,32 +9,40 @@ cover: router.webp ## OpenWrt -!!! recommendation +
- ![Логотип OpenWrt](/assets/img/router/openwrt.svg#only-light){ align=right } - ![Логотип OpenWrt](/assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** - это операционная система, основанная на ядре Linux, используемая в основном на встраиваемых устройствах для маршрутизации сетевого трафика. Основными компонентами являются ядро Linux, util-linux, uClibc и BusyBox. Все компоненты были оптимизированы по размеру, чтобы быть достаточно маленькими для установки в ограниченной памяти, доступной в домашних роутерах. - - [:octicons-home-16: Домашняя страница](https://openwrt.org/ru){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/ru/docs/start){ .card-link title=Документация} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Исходный код" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Поддержать } +![Логотип OpenWrt](/assets/img/router/openwrt.svg#only-light){ align=right } +![Логотип OpenWrt](/assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** - это операционная система, основанная на ядре Linux, используемая в основном на встраиваемых устройствах для маршрутизации сетевого трафика. Основными компонентами являются ядро Linux, util-linux, uClibc и BusyBox. Все компоненты были оптимизированы по размеру, чтобы быть достаточно маленькими для установки в ограниченной памяти, доступной в домашних роутерах. + +[:octicons-home-16: Домашняя страница](https://openwrt.org/ru){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/ru/docs/start){ .card-link title=Документация} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Исходный код" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Поддержать } + + + +
Вы можете обратиться к [таблице устройств](https://openwrt.org/toh/start) OpenWrt, чтобы проверить, поддерживается ли ваше устройство. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense часто используется для файерволов, роутеров, беспроводных точек доступа, серверов DHCP, DNS серверов и конечных точек VPN. - - [:octicons-home-16: Домашняя страница](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Документация} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Исходный код" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Поддержать } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense часто используется для файерволов, роутеров, беспроводных точек доступа, серверов DHCP, DNS серверов и конечных точек VPN. + +[:octicons-home-16: Домашняя страница](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Документация} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Исходный код" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Поддержать } + + + +
OPNsense был изначально разработан как форк [pfSense](https://en.wikipedia.org/wiki/PfSense), и оба проекта известны как бесплатные и надежные дистрибутивы файерволов, которые предлагают функции, часто встречающиеся только в дорогих коммерческих файерволах. Разработчики OPNsense [назвали](https://docs.opnsense.org/history/thefork.html) ряд проблем с безопасностью и качеством кода pfSense, из-за которых в 2015 году и был разработан форк, а также опасения по поводу приобретения pfSense компанией Netgate и направления, в котором движется разработка pfSense. @@ -42,9 +50,12 @@ OPNsense был изначально разработан как форк [pfSen **Обратите внимание, что у нас нет связей ни с одним из проектов, которые мы рекомендуем.** В дополнение к [нашим стандартным критериям](about/criteria.md)мы разработали четкий набор требований, позволяющий нам давать объективные рекомендации. Мы рекомендуем вам ознакомиться с этим списком, прежде чем выбрать программу, и провести самостоятельное исследование, чтобы убедиться, что это правильный выбор для вас. -!!! example "Это новый раздел" +
+

This section is new

- Мы пока работаем над установлением определенных критериев для каждого раздела нашего сайта, и они могут поменяться в будущем. Если у вас есть вопросы по поводу наших критериев, пожалуйста, [задавайте их на нашем форуме](https://discuss.privacyguides.net/latest) и не думайте, что мы не учли что-то при составлении наших рекомендаций, если это не указано здесь. Мы учитываем и обсуждаем много факторов, перед тем как рекомендовать какой-то проект, и документирование каждого из них ещё не завершено. +Мы пока работаем над установлением определенных критериев для каждого раздела нашего сайта, и они могут поменяться в будущем. Если у вас есть вопросы по поводу наших критериев, пожалуйста, [задавайте их на нашем форуме](https://discuss.privacyguides.net/latest) и не думайте, что мы не учли что-то при составлении наших рекомендаций, если это не указано здесь. Мы учитываем и обсуждаем много факторов, перед тем как рекомендовать какой-то проект, и документирование каждого из них ещё не завершено. + +
- Исходный код проекта должен быть открыт. - Проект должен регулярно обновляться. diff --git a/i18n/sv/android.md b/i18n/sv/android.md index 0e9611a7..2c673f3d 100644 --- a/i18n/sv/android.md +++ b/i18n/sv/android.md @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! anmärkning +
+

Note

- End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. +End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** is the best choice when it comes to privacy and security. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** is the best choice when it comes to privacy and security. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! varning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! varning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! anmärkning +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! recommendation +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Kriterier **Observera att vi inte är knutna till något av de projekt som vi rekommenderar.** Förutom [våra standardkriterier](about/criteria.md)har vi utvecklat en tydlig uppsättning krav som gör det möjligt för oss att ge objektiva rekommendationer. Vi föreslår att du bekantar dig med den här listan innan du väljer att använda ett projekt, och att du gör din egen forskning för att se till att det är rätt val för dig. -!!! exempel "Det här avsnittet är nytt" +
+

This section is new

- Vi arbetar med att fastställa kriterier för varje del av vår webbplats, och detta kan komma att ändras. Om du har några frågor om våra kriterier, vänligen [fråga på vårt forum] (https://discuss.privacyguides.net/latest) och tro inte att vi inte har beaktat något när vi gjorde våra rekommendationer om det inte finns med här. Det finns många faktorer som beaktas och diskuteras när vi rekommenderar ett projekt, och att dokumentera varje enskild faktor är ett pågående arbete. +Vi arbetar med att fastställa kriterier för varje del av vår webbplats, och detta kan komma att ändras. Om du har några frågor om våra kriterier, vänligen [fråga på vårt forum] (https://discuss.privacyguides.net/latest) och tro inte att vi inte har beaktat något när vi gjorde våra rekommendationer om det inte finns med här. Det finns många faktorer som beaktas och diskuteras när vi rekommenderar ett projekt, och att dokumentera varje enskild faktor är ett pågående arbete. + +
### Operativsystem diff --git a/i18n/sv/calendar.md b/i18n/sv/calendar.md index 891eee55..a479c146 100644 --- a/i18n/sv/calendar.md +++ b/i18n/sv/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Observera att vi inte är knutna till något av de projekt som vi rekommenderar.** Förutom [våra standardkriterier](about/criteria.md)har vi utvecklat en tydlig uppsättning krav som gör det möjligt för oss att ge objektiva rekommendationer. Vi föreslår att du bekantar dig med den här listan innan du väljer att använda ett projekt, och att du gör din egen forskning för att se till att det är rätt val för dig. -!!! exempel "Det här avsnittet är nytt" +
+

This section is new

- Vi arbetar med att fastställa kriterier för varje del av vår webbplats, och detta kan komma att ändras. Om du har några frågor om våra kriterier, vänligen [fråga på vårt forum] (https://discuss.privacyguides.net/latest) och tro inte att vi inte har beaktat något när vi gjorde våra rekommendationer om det inte finns med här. Det finns många faktorer som beaktas och diskuteras när vi rekommenderar ett projekt, och att dokumentera varje enskild faktor är ett pågående arbete. +Vi arbetar med att fastställa kriterier för varje del av vår webbplats, och detta kan komma att ändras. Om du har några frågor om våra kriterier, vänligen [fråga på vårt forum] (https://discuss.privacyguides.net/latest) och tro inte att vi inte har beaktat något när vi gjorde våra rekommendationer om det inte finns med här. Det finns många faktorer som beaktas och diskuteras när vi rekommenderar ett projekt, och att dokumentera varje enskild faktor är ett pågående arbete. + +
### Minimikrav diff --git a/i18n/sv/cloud.md b/i18n/sv/cloud.md index 8cd8f3fb..022c06f7 100644 --- a/i18n/sv/cloud.md +++ b/i18n/sv/cloud.md @@ -10,29 +10,37 @@ Många molnlagringsleverantörer kräver ditt fulla förtroende för att de inte If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? fråga "Letar du efter Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Observera att vi inte är knutna till något av de projekt som vi rekommenderar.** Förutom [våra standardkriterier](about/criteria.md)har vi utvecklat en tydlig uppsättning krav som gör det möjligt för oss att ge objektiva rekommendationer. Vi föreslår att du bekantar dig med den här listan innan du väljer att använda ett projekt, och att du gör din egen forskning för att se till att det är rätt val för dig. -!!! exempel "Det här avsnittet är nytt" +
+

This section is new

- Vi arbetar med att fastställa kriterier för varje del av vår webbplats, och detta kan komma att ändras. Om du har några frågor om våra kriterier, vänligen [fråga på vårt forum] (https://discuss.privacyguides.net/latest) och tro inte att vi inte har beaktat något när vi gjorde våra rekommendationer om det inte finns med här. Det finns många faktorer som beaktas och diskuteras när vi rekommenderar ett projekt, och att dokumentera varje enskild faktor är ett pågående arbete. +Vi arbetar med att fastställa kriterier för varje del av vår webbplats, och detta kan komma att ändras. Om du har några frågor om våra kriterier, vänligen [fråga på vårt forum] (https://discuss.privacyguides.net/latest) och tro inte att vi inte har beaktat något när vi gjorde våra rekommendationer om det inte finns med här. Det finns många faktorer som beaktas och diskuteras när vi rekommenderar ett projekt, och att dokumentera varje enskild faktor är ett pågående arbete. + +
### Minimikrav diff --git a/i18n/sv/email-clients.md b/i18n/sv/email-clients.md index 8f63a3f1..4d5227ea 100644 --- a/i18n/sv/email-clients.md +++ b/i18n/sv/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Rekommenderad konfiguration @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! varning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! varning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Kriterier **Observera att vi inte är knutna till något av de projekt som vi rekommenderar.** Förutom [våra standardkriterier](about/criteria.md)har vi utvecklat en tydlig uppsättning krav som gör det möjligt för oss att ge objektiva rekommendationer. Vi föreslår att du bekantar dig med den här listan innan du väljer att använda ett projekt, och att du gör din egen forskning för att se till att det är rätt val för dig. -!!! exempel "Det här avsnittet är nytt" +
+

This section is new

- Vi arbetar med att fastställa kriterier för varje del av vår webbplats, och detta kan komma att ändras. Om du har några frågor om våra kriterier, vänligen [fråga på vårt forum] (https://discuss.privacyguides.net/latest) och tro inte att vi inte har beaktat något när vi gjorde våra rekommendationer om det inte finns med här. Det finns många faktorer som beaktas och diskuteras när vi rekommenderar ett projekt, och att dokumentera varje enskild faktor är ett pågående arbete. +Vi arbetar med att fastställa kriterier för varje del av vår webbplats, och detta kan komma att ändras. Om du har några frågor om våra kriterier, vänligen [fråga på vårt forum] (https://discuss.privacyguides.net/latest) och tro inte att vi inte har beaktat något när vi gjorde våra rekommendationer om det inte finns med här. Det finns många faktorer som beaktas och diskuteras när vi rekommenderar ett projekt, och att dokumentera varje enskild faktor är ett pågående arbete. + +
### Minimikrav diff --git a/i18n/sv/financial-services.md b/i18n/sv/financial-services.md index d314979a..7475d824 100644 --- a/i18n/sv/financial-services.md +++ b/i18n/sv/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Observera att vi inte är knutna till något av de projekt som vi rekommenderar.** Förutom [våra standardkriterier](about/criteria.md)har vi utvecklat en tydlig uppsättning krav som gör det möjligt för oss att ge objektiva rekommendationer. Vi föreslår att du bekantar dig med den här listan innan du väljer att använda ett projekt, och att du gör din egen forskning för att se till att det är rätt val för dig. -!!! exempel "Det här avsnittet är nytt" +
+

This section is new

- Vi arbetar med att fastställa kriterier för varje del av vår webbplats, och detta kan komma att ändras. Om du har några frågor om våra kriterier, vänligen [fråga på vårt forum] (https://discuss.privacyguides.net/latest) och tro inte att vi inte har beaktat något när vi gjorde våra rekommendationer om det inte finns med här. Det finns många faktorer som beaktas och diskuteras när vi rekommenderar ett projekt, och att dokumentera varje enskild faktor är ett pågående arbete. +Vi arbetar med att fastställa kriterier för varje del av vår webbplats, och detta kan komma att ändras. Om du har några frågor om våra kriterier, vänligen [fråga på vårt forum] (https://discuss.privacyguides.net/latest) och tro inte att vi inte har beaktat något när vi gjorde våra rekommendationer om det inte finns med här. Det finns många faktorer som beaktas och diskuteras när vi rekommenderar ett projekt, och att dokumentera varje enskild faktor är ett pågående arbete. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Kriterier **Observera att vi inte är knutna till något av de projekt som vi rekommenderar.** Förutom [våra standardkriterier](about/criteria.md)har vi utvecklat en tydlig uppsättning krav som gör det möjligt för oss att ge objektiva rekommendationer. Vi föreslår att du bekantar dig med den här listan innan du väljer att använda ett projekt, och att du gör din egen forskning för att se till att det är rätt val för dig. -!!! exempel "Det här avsnittet är nytt" +
+

This section is new

- Vi arbetar med att fastställa kriterier för varje del av vår webbplats, och detta kan komma att ändras. Om du har några frågor om våra kriterier, vänligen [fråga på vårt forum] (https://discuss.privacyguides.net/latest) och tro inte att vi inte har beaktat något när vi gjorde våra rekommendationer om det inte finns med här. Det finns många faktorer som beaktas och diskuteras när vi rekommenderar ett projekt, och att dokumentera varje enskild faktor är ett pågående arbete. +Vi arbetar med att fastställa kriterier för varje del av vår webbplats, och detta kan komma att ändras. Om du har några frågor om våra kriterier, vänligen [fråga på vårt forum] (https://discuss.privacyguides.net/latest) och tro inte att vi inte har beaktat något när vi gjorde våra rekommendationer om det inte finns med här. Det finns många faktorer som beaktas och diskuteras när vi rekommenderar ett projekt, och att dokumentera varje enskild faktor är ett pågående arbete. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/sv/router.md b/i18n/sv/router.md index f35ef48c..87bb9f95 100644 --- a/i18n/sv/router.md +++ b/i18n/sv/router.md @@ -9,32 +9,40 @@ Nedan följer några alternativa operativsystem som kan användas på routrar, W ## OpenWrt -!!! recommendation +
- ![OpenWrt-logotyp](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** är ett Linuxbaserat operativsystem som främst används på inbyggda enheter för att dirigera nätverkstrafik. Den innehåller util-linux, uClibc och BusyBox. Alla komponenter har optimerats för hem routrar. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } +![OpenWrt-logotyp](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** är ett Linuxbaserat operativsystem som främst används på inbyggda enheter för att dirigera nätverkstrafik. Den innehåller util-linux, uClibc och BusyBox. Alla komponenter har optimerats för hem routrar. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } + + + +
Du kan se OpenWrts [tabell över maskinvara](https://openwrt.org/toh/start) för att kontrollera om din enhet stöds. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense används vanligen som brandvägg, router, trådlös åtkomstpunkt, DHCP-server, DNS-server och VPN-slutpunkt. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate){ .card-link title=Contribute } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense används vanligen som brandvägg, router, trådlös åtkomstpunkt, DHCP-server, DNS-server och VPN-slutpunkt. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate){ .card-link title=Contribute } + + + +
OPNsense utvecklades ursprungligen som en gaffel av [pfSense](https://en.wikipedia.org/wiki/PfSense), och båda projekten är kända för att vara fria och pålitliga brandväggsdistributioner som erbjuder funktioner som ofta endast finns i dyra kommersiella brandväggar. Utvecklarna av OPNsense [, som lanserades 2015, citerade](https://docs.opnsense.org/history/thefork.html) ett antal säkerhets- och kodkvalitetsproblem med pfSense som de ansåg nödvändiggjorde en delning av projektet, samt oro över Netgates majoritetsförvärv av pfSense och pfSense-projektets framtida inriktning. @@ -42,9 +50,12 @@ OPNsense utvecklades ursprungligen som en gaffel av [pfSense](https://en.wikiped **Observera att vi inte är knutna till något av de projekt som vi rekommenderar.** Förutom [våra standardkriterier](about/criteria.md)har vi utvecklat en tydlig uppsättning krav som gör det möjligt för oss att ge objektiva rekommendationer. Vi föreslår att du bekantar dig med den här listan innan du väljer att använda ett projekt, och att du gör din egen forskning för att se till att det är rätt val för dig. -!!! exempel "Det här avsnittet är nytt" +
+

This section is new

- Vi arbetar med att fastställa kriterier för varje del av vår webbplats, och detta kan komma att ändras. Om du har några frågor om våra kriterier, vänligen [fråga på vårt forum] (https://discuss.privacyguides.net/latest) och tro inte att vi inte har beaktat något när vi gjorde våra rekommendationer om det inte finns med här. Det finns många faktorer som beaktas och diskuteras när vi rekommenderar ett projekt, och att dokumentera varje enskild faktor är ett pågående arbete. +Vi arbetar med att fastställa kriterier för varje del av vår webbplats, och detta kan komma att ändras. Om du har några frågor om våra kriterier, vänligen [fråga på vårt forum] (https://discuss.privacyguides.net/latest) och tro inte att vi inte har beaktat något när vi gjorde våra rekommendationer om det inte finns med här. Det finns många faktorer som beaktas och diskuteras när vi rekommenderar ett projekt, och att dokumentera varje enskild faktor är ett pågående arbete. + +
- Måste vara öppen källkod. - Måste få regelbundna uppdateringar. diff --git a/i18n/tr/android.md b/i18n/tr/android.md index 731b0e9d..6a650455 100644 --- a/i18n/tr/android.md +++ b/i18n/tr/android.md @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. +End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. + +
### GrapheneOS -!!! öneri +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** is the best choice when it comes to privacy and security. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** is the best choice when it comes to privacy and security. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! öneri +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! öneri +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! öneri +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! öneri +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! öneri +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! öneri +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! öneri +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Operating Systems diff --git a/i18n/tr/calendar.md b/i18n/tr/calendar.md index 84380971..fd26697b 100644 --- a/i18n/tr/calendar.md +++ b/i18n/tr/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! öneri +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! öneri +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/tr/cloud.md b/i18n/tr/cloud.md index fc397ac9..d2042965 100644 --- a/i18n/tr/cloud.md +++ b/i18n/tr/cloud.md @@ -10,29 +10,37 @@ Birçok bulut depolama sağlayıcısı, dosyalarınıza bakmayacaklarına dair s Bu alternatifler ihtiyaçlarınızı karşılamıyorsa, başka bir bulut sağlayıcısıyla birlikte [Cryptomator](encryption.md#cryptomator-cloud) gibi bir şifreleme yazılımı kullanmanızı öneririz. Cryptomator'ı **herhangi bir ** bulut sağlayıcısıyla kullanmak (listenenenler dahil) sağlayıcının yerel istemcilerindeki şifreleme kusurlarını azaltmak için iyi bir fikir olabilir. -??? question "Nextcloud'u mu arıyorsunuz?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! öneri +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** popüler şifrelenmiş e-posta sağlayıcısı [Proton Mail]'in isviçre tabanlı şifrelenmiş bulut depolama aracıdır.(email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** popüler şifrelenmiş e-posta sağlayıcısı [Proton Mail]'in isviçre tabanlı şifrelenmiş bulut depolama aracıdır.(email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
Proton Drive web uygulaması [2021](https://proton.me/blog/security-audit-all-proton-apps)yılında Securitum tarafından bağımsız olarak denetlenmiştir, tüm ayrıntılar mevcut değildir, ancak Securitum'un tasdik mektubunda şunlar belirtilmiştir: @@ -42,23 +50,28 @@ Proton Drive'ın yeni mobil uygulamaları henüz herhangi bir üçüncü tarafç ## Tresorit -!!! öneri +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** İsviçre-Macaristan tabanlı, 2011 yılında kurulmuş bir bulut depolama sağlayıcısıdır. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? indirmeler - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** İsviçre-Macaristan tabanlı, 2011 yılında kurulmuş bir bulut depolama sağlayıcısıdır. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Requirements diff --git a/i18n/tr/email-clients.md b/i18n/tr/email-clients.md index ccdbfab8..a18a09c2 100644 --- a/i18n/tr/email-clients.md +++ b/i18n/tr/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! öneri +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Önerilen Yapılandırma @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! öneri +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! öneri +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! öneri +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! öneri +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! öneri +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! öneri +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! öneri +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! öneri +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/tr/financial-services.md b/i18n/tr/financial-services.md index eb929f90..60641cd0 100644 --- a/i18n/tr/financial-services.md +++ b/i18n/tr/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! öneri +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! öneri +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! öneri +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/tr/router.md b/i18n/tr/router.md index 0c52b5be..5100fb59 100644 --- a/i18n/tr/router.md +++ b/i18n/tr/router.md @@ -9,29 +9,37 @@ Aşağıda; yönlendiricilerde, Wi-Fi erişim noktalarında vb. kullanılabilece ## OpenWrt -!!! öneri +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** Linux kernelini temel alan, gömülü cihazlarda ağ trafiğini yönlendirmek için kullanılan bir işletim sistemidir. (Gömülü bir işletim sistemi de denebilir.). Ana bileşenler Linux kerneli, util - linux, uClibc ve BusyBox'tur. Tüm bileşenler, ev yönlendiricilerinde bulunan sınırlı depolama ve belleğe sığacak kadar küçük olacak şekilde optimize edilmiştir. - - [:octicons-home-16: Anasayfa](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** Linux kernelini temel alan, gömülü cihazlarda ağ trafiğini yönlendirmek için kullanılan bir işletim sistemidir. (Gömülü bir işletim sistemi de denebilir.). Ana bileşenler Linux kerneli, util - linux, uClibc ve BusyBox'tur. Tüm bileşenler, ev yönlendiricilerinde bulunan sınırlı depolama ve belleğe sığacak kadar küçük olacak şekilde optimize edilmiştir. + +[:octicons-home-16: Anasayfa](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } + + + +
Cihazınızın desteklenip desteklenmediğini kontrol etmek için OpenWrt'nin [donanım tablosuna](https://openwrt.org/toh/start) başvurabilirsiniz. ## pfSense -!!! öneri +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. Bir ağ için özel bir güvenlik duvarı/yönlendirici yapmak üzere bir bilgisayara kurulmuştur ve güvenilirliği, genellikle, sadece pahalı ticari güvenlik duvarlarında bulunan özellikler sunmasıyla bilinir. - - pfSense genellikle çevre güvenlik duvarı, yönlendirici, kablosuz erişim noktası, DHCP sunucusu, DNS sunucusu ve VPN noktası olarak dağıtılır. +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. Bir ağ için özel bir güvenlik duvarı/yönlendirici yapmak üzere bir bilgisayara kurulmuştur ve güvenilirliği, genellikle, sadece pahalı ticari güvenlik duvarlarında bulunan özellikler sunmasıyla bilinir. + +pfSense genellikle çevre güvenlik duvarı, yönlendirici, kablosuz erişim noktası, DHCP sunucusu, DNS sunucusu ve VPN noktası olarak dağıtılır. + + + +
OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.org/wiki/PfSense), and both projects are noted for being free and reliable firewall distributions which offer features often only found in expensive commercial firewalls. Launched in 2015, the developers of OPNsense [cited](https://docs.opnsense.org/history/thefork.html) a number of security and code-quality issues with pfSense which they felt necessitated a fork of the project, as well as concerns about Netgate's majority acquisition of pfSense and the future direction of the pfSense project. @@ -39,9 +47,12 @@ OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.or **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Must be open source. - Must receive regular updates. diff --git a/i18n/uk/android.md b/i18n/uk/android.md index 1c4c1a0e..6a650455 100644 --- a/i18n/uk/android.md +++ b/i18n/uk/android.md @@ -95,26 +95,31 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. +End-of-life devices (such as GrapheneOS or CalyxOS's "extended support" devices) do not have full security patches (firmware updates) due to the OEM discontinuing support. These devices cannot be considered completely secure regardless of installed software. + +
### GrapheneOS -!!! рекомендації +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** is the best choice when it comes to privacy and security. - - GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** is the best choice when it comes to privacy and security. + +GrapheneOS provides additional [security hardening](https://en.wikipedia.org/wiki/Hardening_(computing)) and privacy improvements. It has a [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), network and sensor permissions, and various other [security features](https://grapheneos.org/features). GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported. + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! рекомендації +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). - DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** is a soft-fork of [LineageOS](https://lineageos.org/). +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. It has signed builds, making it possible to have [verified boot](https://source.android.com/security/verifiedboot) on some non-Pixel devices. + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning +
+

Warning

- DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. - - Not all of the supported devices have verified boot, and some perform it better than others. +DivestOS firmware update [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS) and quality control varies across the devices it supports. We still recommend GrapheneOS depending on your device's compatibility. For other devices, DivestOS is a good alternative. + +Not all of the supported devices have verified boot, and some perform it better than others. + +
## Android Devices @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! рекомендації +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! рекомендації +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - - Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning +**Shelter** is an app that helps you leverage Android's Work Profile functionality to isolate or duplicate apps on your device. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Shelter supports blocking contact search cross profiles and sharing files across profiles via the default file manager ([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui)). + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
### Secure Camera -!!! рекомендації +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. CameraX vendor extensions (Portrait, HDR, Night Sight, Face Retouch, and Auto) are also supported on available devices. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! рекомендації +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## Obtaining Applications ### Obtainium -!!! рекомендації +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! рекомендації +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** is a Google Play Store client which does not require a Google Account, Google Play Services, or microG to download apps. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Operating Systems diff --git a/i18n/uk/calendar.md b/i18n/uk/calendar.md index 023190e7..fd26697b 100644 --- a/i18n/uk/calendar.md +++ b/i18n/uk/calendar.md @@ -9,48 +9,58 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! рекомендації +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - Multiple calendars and extended sharing functionality is limited to paid subscribers. - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +Multiple calendars and extended sharing functionality is limited to paid subscribers. + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! рекомендації +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Features include: automatic E2EE of all data, sharing features, import/export functionality, and [more](https://proton.me/support/proton-calendar-guide). Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. Extended sharing functionality is also limited to paid subscribers. + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/uk/cloud.md b/i18n/uk/cloud.md index 56f76993..34b98b3d 100644 --- a/i18n/uk/cloud.md +++ b/i18n/uk/cloud.md @@ -10,29 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "Looking for Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! рекомендації +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! рекомендації +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Requirements diff --git a/i18n/uk/email-clients.md b/i18n/uk/email-clients.md index e8d5c054..8ff4a1f0 100644 --- a/i18n/uk/email-clients.md +++ b/i18n/uk/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! рекомендації +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Recommended Configuration @@ -60,169 +68,217 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! рекомендації +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! рекомендації +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! рекомендації +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! рекомендації +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! рекомендації +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! рекомендації +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! рекомендації +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! рекомендації +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/uk/financial-services.md b/i18n/uk/financial-services.md index 3d415bfd..60641cd0 100644 --- a/i18n/uk/financial-services.md +++ b/i18n/uk/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! рекомендації +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! рекомендації +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! рекомендації +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/uk/router.md b/i18n/uk/router.md index 17d862cd..65fa281a 100644 --- a/i18n/uk/router.md +++ b/i18n/uk/router.md @@ -9,28 +9,36 @@ cover: router.webp ## OpenWrt -!!! рекомендації +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** - це операційна система (зокрема, вбудована операційна система), заснована на ядрі Linux, яка в основному використовується на вбудованих пристроях для маршрутизації мережевого трафіку. Основними компонентами є ядро Linux, util-linux, uClibc, та BusyBox. Всі компоненти були оптимізовані за розміром, щоб бути досить маленькими для розміщення в обмеженому сховищі і пам'яті, доступних в домашніх маршрутизаторах. - - [Homepage](https://openwrt.org){ .md-button .md-button--primary } - - ??? +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** - це операційна система (зокрема, вбудована операційна система), заснована на ядрі Linux, яка в основному використовується на вбудованих пристроях для маршрутизації мережевого трафіку. Основними компонентами є ядро Linux, util-linux, uClibc, та BusyBox. Всі компоненти були оптимізовані за розміром, щоб бути досить маленькими для розміщення в обмеженому сховищі і пам'яті, доступних в домашніх маршрутизаторах. + +[Homepage](https://openwrt.org){ .md-button .md-button--primary } + +??? + + + +
Щоб перевірити, чи підтримується ваш пристрій, перегляньте [таблицю апаратного забезпечення](https://openwrt.org/toh/start) OpenWrt. ## OPNsense -!!! рекомендації +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. Він встановлюється на комп'ютер для створення виділеного брандмауера/маршрутизатора для мережі та відомий своєю надійністю і пропонує функції, які часто зустрічаються тільки в дорогих комерційних брандмауерах. - - pfSense зазвичай розгортається як брандмауер по периметру, маршрутизатор, бездротова точка доступу, DHCP-сервер, DNS-сервер і кінцева точка VPN. +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. Він встановлюється на комп'ютер для створення виділеного брандмауера/маршрутизатора для мережі та відомий своєю надійністю і пропонує функції, які часто зустрічаються тільки в дорогих комерційних брандмауерах. + +pfSense зазвичай розгортається як брандмауер по периметру, маршрутизатор, бездротова точка доступу, DHCP-сервер, DNS-сервер і кінцева точка VPN. + + + +
OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.org/wiki/PfSense), and both projects are noted for being free and reliable firewall distributions which offer features often only found in expensive commercial firewalls. Launched in 2015, the developers of OPNsense [cited](https://docs.opnsense.org/history/thefork.html) a number of security and code-quality issues with pfSense which they felt necessitated a fork of the project, as well as concerns about Netgate's majority acquisition of pfSense and the future direction of the pfSense project. @@ -38,9 +46,12 @@ OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.or **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Must be open source. - Must receive regular updates. diff --git a/i18n/vi/android.md b/i18n/vi/android.md index c1a485a2..f713e4c9 100644 --- a/i18n/vi/android.md +++ b/i18n/vi/android.md @@ -1,7 +1,7 @@ --- meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" title: "Android" -icon: 'fontawesome/brands/android' +icon: 'simple/android' description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: @@ -56,19 +56,19 @@ schema: - "@context": http://schema.org "@type": MobileApplication - name: Google Pixel + name: Shelter applicationCategory: Utilities operatingSystem: Android - "@context": http://schema.org "@type": MobileApplication - name: Các thiết bị khác + name: Auditor applicationCategory: Utilities operatingSystem: Android - "@context": http://schema.org "@type": MobileApplication - name: Orbot + name: Secure Camera applicationCategory: Utilities operatingSystem: Android - @@ -95,22 +95,27 @@ These are the Android operating systems, devices, and apps we recommend to maxim We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- Các thiết bị cuối đời (chẳng hạn như thiết bị "hỗ trợ mở rộng" của GrapheneOS hoặc CalyxOS) không có các bản vá bảo mật đầy đủ (cập nhật chương trình cơ sở) do OEM ngừng hỗ trợ. Những thiết bị này không thể được coi là hoàn toàn an toàn bất kể phần mềm được cài đặt. +Các thiết bị cuối đời (chẳng hạn như thiết bị "hỗ trợ mở rộng" của GrapheneOS hoặc CalyxOS) không có các bản vá bảo mật đầy đủ (cập nhật chương trình cơ sở) do OEM ngừng hỗ trợ. Những thiết bị này không thể được coi là hoàn toàn an toàn bất kể phần mềm được cài đặt. + +
### GrapheneOS -!!! khuyến nghị +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** là sự lựa chọn tốt nhất khi nói đến quyền riêng tư và bảo mật. - - GrapheneOS cung cấp thêm [tăng cường bảo mật](https://en.wikipedia.org/wiki/Hardening_(computing)) và các cải tiến về quyền riêng tư. Nó có [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), quyền mạng và cảm biến cũng như nhiều [tính năng bảo mật](https://grapheneos.org/features). GrapheneOS cũng đi kèm với các bản cập nhật chương trình cơ sở đầy đủ và các bản dựng đã ký, vì vậy khởi động đã xác minh được hỗ trợ đầy đủ. - - [Homepage](https://grapheneos.org/){ .md-button .md-button--primary } [Chính Sách Bảo Mật](https://grapheneos.org/faq#privacy-policy){ .md-button } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** là sự lựa chọn tốt nhất khi nói đến quyền riêng tư và bảo mật. + +GrapheneOS cung cấp thêm [tăng cường bảo mật](https://en.wikipedia.org/wiki/Hardening_(computing)) và các cải tiến về quyền riêng tư. Nó có [hardened memory allocator](https://github.com/GrapheneOS/hardened_malloc), quyền mạng và cảm biến cũng như nhiều [tính năng bảo mật](https://grapheneos.org/features). GrapheneOS cũng đi kèm với các bản cập nhật chương trình cơ sở đầy đủ và các bản dựng đã ký, vì vậy khởi động đã xác minh được hỗ trợ đầy đủ. + +[Homepage](https://grapheneos.org/){ .md-button .md-button--primary } [Chính Sách Bảo Mật](https://grapheneos.org/faq#privacy-policy){ .md-button } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -120,19 +125,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### CalyxOS -!!! khuyến nghị +
- ![CalyxOS logo](assets/img/android/calyxos.svg){ align=right } - - **CalyxOS** là một hệ thống có một số tính năng bảo mật trên AOSP, bao gồm [Datura](https://calyxos.org/docs/tech/datura-details) tường lửa, [Signal](https://signal.org) tích hợp trong ứng dụng quay số và nút dừng khẩn cấp được tích hợp sẵn. - CalyxOS cũng đi kèm với các bản cập nhật chương trình cơ sở và các bản dựng đã ký, vì vậy khởi động đã xác minh được hỗ trợ đầy đủ. [Homepage](https://calyxos.org/){ .md-button .md-button--primary } [Chính Sách Bảo Mật](https://calyxinstitute.org/legal/privacy-policy){ .md-button } - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![CalyxOS logo](assets/img/android/calyxos.svg){ align=right } + +**CalyxOS** là một hệ thống có một số tính năng bảo mật trên AOSP, bao gồm [Datura](https://calyxos.org/docs/tech/datura-details) tường lửa, [Signal](https://signal.org) tích hợp trong ứng dụng quay số và nút dừng khẩn cấp được tích hợp sẵn. +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. [Homepage](https://calyxos.org/){ .md-button .md-button--primary } [Chính Sách Bảo Mật](https://calyxinstitute.org/legal/privacy-policy){ .md-button } + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -140,13 +147,16 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! warning +
+

Warning

- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** là phần mềm fork của [LineageOS](https://lineageos.org/). DivestOS kế thừa nhiều [thiết bị được hỗ trợ](https://divestos.org/index.php?page=devices&base=LineageOS) từ LineageOS. Nó có các bản dựng đã ký, nên có thể có [khởi động đã xác minh](https://source.android.com/security/verifiedboot) trên một số thiết bị không phải Pixel. - - [Homepage](https://divestos.org){ .md-button .md-button--primary } [Chính Sách Bảo Mật](https://divestos.org/index.php?page=privacy_policy){ .md-button } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** là phần mềm fork của [LineageOS](https://lineageos.org/). DivestOS kế thừa nhiều [thiết bị được hỗ trợ](https://divestos.org/index.php?page=devices&base=LineageOS) từ LineageOS. Nó có các bản dựng đã ký, nên có thể có [khởi động đã xác minh](https://source.android.com/security/verifiedboot) trên một số thiết bị không phải Pixel. + +[Homepage](https://divestos.org){ .md-button .md-button--primary } [Chính Sách Bảo Mật](https://divestos.org/index.php?page=privacy_policy){ .md-button } + +
## Thiết bị Android @@ -154,7 +164,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -166,15 +176,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! khuyến nghị +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - Đối với các thiết bị khác, DivestOS là một lựa chọn thay thế tốt. +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +**Google Pixel** devices are known to have good security and properly support [Verified Boot](https://source.android.com/security/verifiedboot), even when installing custom operating systems. + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +Đối với các thiết bị khác, DivestOS là một lựa chọn thay thế tốt. + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -194,47 +206,57 @@ A few more tips for purchasing a Google Pixel: We recommend a wide variety of Android apps throughout this site. The apps listed here are Android-exclusive and specifically enhance or replace key system functionality. -### Google Pixel +### Shelter -!!! khuyến nghị +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - **Google Pixel** được biết là có bảo mật tốt và hỗ trợ đúng cách [Khởi động đã xác minh](https://source.android.com/security/verifiedboot), ngay cả khi cài đặt hệ điều hành tùy chỉnh. - - Bắt đầu với **Pixel 6** và **6 Pro**, các thiết bị Pixel nhận được bản cập nhật bảo mật được đảm bảo tối thiểu 5 năm, đảm bảo tuổi thọ dài hơn nhiều so với 2-4 năm mà các OEM cạnh tranh thường cung cấp. - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } -!!! warning +**Google Pixel** được biết là có bảo mật tốt và hỗ trợ đúng cách [Khởi động đã xác minh](https://source.android.com/security/verifiedboot), ngay cả khi cài đặt hệ điều hành tùy chỉnh. - Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). - - When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. +Bắt đầu với **Pixel 6** và **6 Pro**, các thiết bị Pixel nhận được bản cập nhật bảo mật được đảm bảo tối thiểu 5 năm, đảm bảo tuổi thọ dài hơn nhiều so với 2-4 năm mà các OEM cạnh tranh thường cung cấp. -### Orbot +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } -!!! khuyến nghị +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. [Homepage](https://orbot.app/){ .md-button .md-button--primary } - - ??? - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +
+

Warning

+ +Shelter is recommended over [Insular](https://secure-system.gitlab.io/Insular/) and [Island](https://github.com/oasisfeng/island) as it supports [contact search blocking](https://secure-system.gitlab.io/Insular/faq.html). + +When using Shelter, you are placing complete trust in its developer, as Shelter acts as a [Device Admin](https://developer.android.com/guide/topics/admin/device-admin) to create the Work Profile, and it has extensive access to the data stored within the Work Profile. + +
+ +### Secure Camera + +
+ +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** is a camera app focused on privacy and security which can capture images, videos and QR codes. [Homepage](https://orbot.app/){ .md-button .md-button--primary } + +??? + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- Metadata is not currently deleted from video files but that is planned. - - The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). +Metadata is not currently deleted from video files but that is planned. + +The image orientation metadata is not deleted. If you enable location (in Secure Camera) that **won't** be deleted either. If you want to delete that later you will need to use an external app such as [ExifEraser](data-redaction.md#exiferaser). + +
### Secure PDF Viewer -!!! khuyến nghị +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** is a PDF viewer based on [pdf.js](https://en.wikipedia.org/wiki/PDF.js) that doesn't require any permissions. The PDF is fed into a [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview). This means that it doesn't require permission directly to access content or files. + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy) is used to enforce that the JavaScript and styling properties within the WebView are entirely static content. + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## App Stores ### Obtainium -!!! khuyến nghị +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,17 +332,22 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! khuyến nghị +
- Vì CalyxOS bao gồm một bộ điều khiển thiết bị, chúng tôi khuyên bạn nên sử dụng hồ sơ công việc được tích hợp sẵn của chúng để thay thế. - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +Vì CalyxOS bao gồm một bộ điều khiển thiết bị, chúng tôi khuyên bạn nên sử dụng hồ sơ công việc được tích hợp sẵn của chúng để thay thế. + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -372,23 +412,28 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Framadate **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! cảnh báo - PrivateBin sử dụng JavaScript để xử lý mã hóa, vì vậy bạn phải tin tưởng nhà cung cấp ở mức độ họ không đưa bất kỳ JavaScript độc hại nào vào để lấy khóa cá nhân của bạn. +
+

This section is new

- ![PrivateBin logo](assets/img/productivity/privatebin.svg){ align=right } - - **PrivateBin** là một pastebin trực tuyến mã nguồn mở, tối giản, nơi máy chủ không có kiến ​​thức về dữ liệu đã dán. Dữ liệu được mã hóa/giải mã trong trình duyệt bằng 256-bit AES. tải xuống - - - [:fontawesome-brands-docker: Dockerhub](https://hub.docker.com/r/vaultwarden/server) - - [:fontawesome-brands-github: Mã nguồn](https://github.com/dani-garcia/vaultwarden) +![PrivateBin logo](assets/img/productivity/privatebin.svg){ align=right } + +**PrivateBin** là một pastebin trực tuyến mã nguồn mở, tối giản, nơi máy chủ không có kiến ​​thức về dữ liệu đã dán. Dữ liệu được mã hóa/giải mã trong trình duyệt bằng 256-bit AES. tải xuống + + - [:fontawesome-brands-docker: Dockerhub](https://hub.docker.com/r/vaultwarden/server) + - [:fontawesome-brands-github: Mã nguồn](https://github.com/dani-garcia/vaultwarden) + +
### Operating Systems diff --git a/i18n/vi/calendar.md b/i18n/vi/calendar.md index 9f3f4d3e..0c6dfe81 100644 --- a/i18n/vi/calendar.md +++ b/i18n/vi/calendar.md @@ -9,60 +9,70 @@ Calendars contain some of your most sensitive data; use products that implement ## Tuta -!!! khuyến nghị +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - tải xuống - - - [:fontawesome-brands-windows: Windows](https://tutanota.com/blog/posts/desktop-clients/) - - [:fontawesome-brands-apple: macOS](https://tutanota.com/blog/posts/desktop-clients/) - - [:fontawesome-brands-linux: Linux](https://tutanota.com/blog/posts/desktop-clients/) - - [:pg-flathub: Flatpak](https://flathub.org/apps/details/com.tutanota.Tutanota) - - [:fontawesome-brands-google-play: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:pg-f-droid: F-Droid](https://f-droid.org/en/packages/de.tutao.tutanota) - - [:fontawesome-brands-app-store-ios: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:fontawesome-brands-github: Mã nguồn](https://github.com/tutao/tutanota) - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +tải xuống + + - [:fontawesome-brands-windows: Windows](https://tutanota.com/blog/posts/desktop-clients/) + - [:fontawesome-brands-apple: macOS](https://tutanota.com/blog/posts/desktop-clients/) + - [:fontawesome-brands-linux: Linux](https://tutanota.com/blog/posts/desktop-clients/) + - [:pg-flathub: Flatpak](https://flathub.org/apps/details/com.tutanota.Tutanota) + - [:fontawesome-brands-google-play: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) + - [:pg-f-droid: F-Droid](https://f-droid.org/en/packages/de.tutao.tutanota) + - [:fontawesome-brands-app-store-ios: App Store](https://apps.apple.com/us/app/tutanota/id922429609) + - [:fontawesome-brands-github: Mã nguồn](https://github.com/tutao/tutanota) + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Self-hostable -!!! khuyến nghị +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Tất cả dữ liệu được lưu trữ bên trong nó đều được mã hóa đầu cuối khi được lưu trữ trên các máy chủ của ProtonMail. Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. tải xuống - - - [:fontawesome-brands-google-play: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:fontawesome-brands-github: Mã nguồn](https://github.com/ProtonMail/WebClients) - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** is an encrypted calendar service available to Proton members via web or mobile clients. Tất cả dữ liệu được lưu trữ bên trong nó đều được mã hóa đầu cuối khi được lưu trữ trên các máy chủ của ProtonMail. Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. tải xuống + + - [:fontawesome-brands-google-play: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) + - [:fontawesome-brands-github: Mã nguồn](https://github.com/ProtonMail/WebClients) + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -70,15 +80,17 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! cảnh báo - PrivateBin sử dụng JavaScript để xử lý mã hóa, vì vậy bạn phải tin tưởng nhà cung cấp ở mức độ họ không đưa bất kỳ JavaScript độc hại nào vào để lấy khóa cá nhân của bạn. +
+

This section is new

- ![PrivateBin logo](assets/img/productivity/privatebin.svg){ align=right } - - **PrivateBin** là một pastebin trực tuyến mã nguồn mở, tối giản, nơi máy chủ không có kiến ​​thức về dữ liệu đã dán. Dữ liệu được mã hóa/giải mã trong trình duyệt bằng 256-bit AES. tải xuống - - - [:fontawesome-brands-docker: Dockerhub](https://hub.docker.com/r/vaultwarden/server) - - [:fontawesome-brands-github: Mã nguồn](https://github.com/dani-garcia/vaultwarden) +![PrivateBin logo](assets/img/productivity/privatebin.svg){ align=right } + +**PrivateBin** là một pastebin trực tuyến mã nguồn mở, tối giản, nơi máy chủ không có kiến ​​thức về dữ liệu đã dán. Dữ liệu được mã hóa/giải mã trong trình duyệt bằng 256-bit AES. tải xuống + + - [:fontawesome-brands-docker: Dockerhub](https://hub.docker.com/r/vaultwarden/server) + - [:fontawesome-brands-github: Mã nguồn](https://github.com/dani-garcia/vaultwarden) + +
### Minimum Qualifications diff --git a/i18n/vi/cloud.md b/i18n/vi/cloud.md index 11424db7..ad33181c 100644 --- a/i18n/vi/cloud.md +++ b/i18n/vi/cloud.md @@ -10,29 +10,37 @@ Many cloud storage providers require your full trust that they will not look at If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? question "Looking for Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! khuyến nghị +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! khuyến nghị +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,15 +89,17 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! cảnh báo - PrivateBin sử dụng JavaScript để xử lý mã hóa, vì vậy bạn phải tin tưởng nhà cung cấp ở mức độ họ không đưa bất kỳ JavaScript độc hại nào vào để lấy khóa cá nhân của bạn. +
+

This section is new

- ![PrivateBin logo](assets/img/productivity/privatebin.svg){ align=right } - - **PrivateBin** là một pastebin trực tuyến mã nguồn mở, tối giản, nơi máy chủ không có kiến ​​thức về dữ liệu đã dán. Dữ liệu được mã hóa/giải mã trong trình duyệt bằng 256-bit AES. tải xuống - - - [:fontawesome-brands-docker: Dockerhub](https://hub.docker.com/r/vaultwarden/server) - - [:fontawesome-brands-github: Mã nguồn](https://github.com/dani-garcia/vaultwarden) +![PrivateBin logo](assets/img/productivity/privatebin.svg){ align=right } + +**PrivateBin** là một pastebin trực tuyến mã nguồn mở, tối giản, nơi máy chủ không có kiến ​​thức về dữ liệu đã dán. Dữ liệu được mã hóa/giải mã trong trình duyệt bằng 256-bit AES. tải xuống + + - [:fontawesome-brands-docker: Dockerhub](https://hub.docker.com/r/vaultwarden/server) + - [:fontawesome-brands-github: Mã nguồn](https://github.com/dani-garcia/vaultwarden) + +
### Minimum Requirements diff --git a/i18n/vi/email-clients.md b/i18n/vi/email-clients.md index db13bf02..cacb17b4 100644 --- a/i18n/vi/email-clients.md +++ b/i18n/vi/email-clients.md @@ -7,33 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! khuyến nghị +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } [Chính Sách Bảo Mật](https://www.mozilla.org/privacy/thunderbird){ .md-button } - - ??? tải xuống - - - [:fontawesome-brands-windows: Windows](https://www.thunderbird.net) - - [:fontawesome-brands-apple: macOS](https://www.thunderbird.net) - - [:fontawesome-brands-linux: Linux](https://www.thunderbird.net) - - [:pg-flathub: Flatpak](https://flathub.org/apps/details/org.mozilla.Thunderbird) - - [:fontawesome-brands-git: Mã nguồn](https://hg.mozilla.org/comm-central) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### Recommended Configuration @@ -58,175 +68,228 @@ These options can be found in :material-menu: → **Settings** → **Privacy & S ### Apple Mail (macOS) -!!! khuyến nghị +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! khuyến nghị +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [Website](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } [Chính Sách Bảo Mật](https://www.apple.com/legal/privacy/en-ww/){ .md-button } downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! khuyến nghị +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? [Website](https://kontact.kde.org){ .md-button .md-button--primary } [Chính Sách Bảo Mật](https://kde.org/privacypolicy-apps){ .md-button } - - ??? +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! khuyến nghị +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. [Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } [Chính Sách Bảo Mật](https://www.mailvelope.com/en/privacy-policy){ .md-button } - - ??? - - tải xuống - - - [:fontawesome-brands-firefox: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:fontawesome-brands-chrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:fontawesome-brands-edge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) - - [:fontawesome-brands-github: Mã nguồn](https://github.com/mailvelope/mailvelope) downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. [Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } [Chính Sách Bảo Mật](https://www.mailvelope.com/en/privacy-policy){ .md-button } + +??? + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! khuyến nghị +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - [Homepage](https://k9mail.app){ .md-button .md-button--primary } [Chính Sách Bảo Mật](https://k9mail.app/privacy){ .md-button } - - ??? - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. [Homepage](https://email.faircode.eu){ .md-button .md-button--primary } [Chính Sách Bảo Mật](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .md-button } - - ??? +[Homepage](https://k9mail.app){ .md-button .md-button--primary } [Chính Sách Bảo Mật](https://k9mail.app/privacy){ .md-button } + +??? + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. [Homepage](https://email.faircode.eu){ .md-button .md-button--primary } [Chính Sách Bảo Mật](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .md-button } + +??? + +
### Kontact (KDE) -!!! khuyến nghị +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! khuyến nghị +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! khuyến nghị +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Framadate **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! cảnh báo - PrivateBin sử dụng JavaScript để xử lý mã hóa, vì vậy bạn phải tin tưởng nhà cung cấp ở mức độ họ không đưa bất kỳ JavaScript độc hại nào vào để lấy khóa cá nhân của bạn. +
+

This section is new

- ![PrivateBin logo](assets/img/productivity/privatebin.svg){ align=right } - - **PrivateBin** là một pastebin trực tuyến mã nguồn mở, tối giản, nơi máy chủ không có kiến ​​thức về dữ liệu đã dán. Dữ liệu được mã hóa/giải mã trong trình duyệt bằng 256-bit AES. tải xuống - - - [:fontawesome-brands-docker: Dockerhub](https://hub.docker.com/r/vaultwarden/server) - - [:fontawesome-brands-github: Mã nguồn](https://github.com/dani-garcia/vaultwarden) +![PrivateBin logo](assets/img/productivity/privatebin.svg){ align=right } + +**PrivateBin** là một pastebin trực tuyến mã nguồn mở, tối giản, nơi máy chủ không có kiến ​​thức về dữ liệu đã dán. Dữ liệu được mã hóa/giải mã trong trình duyệt bằng 256-bit AES. tải xuống + + - [:fontawesome-brands-docker: Dockerhub](https://hub.docker.com/r/vaultwarden/server) + - [:fontawesome-brands-github: Mã nguồn](https://github.com/dani-garcia/vaultwarden) + +
### Minimum Qualifications diff --git a/i18n/vi/financial-services.md b/i18n/vi/financial-services.md index 1f1533e6..09bb0ca2 100644 --- a/i18n/vi/financial-services.md +++ b/i18n/vi/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! khuyến nghị +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! khuyến nghị +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,15 +61,17 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! cảnh báo - PrivateBin sử dụng JavaScript để xử lý mã hóa, vì vậy bạn phải tin tưởng nhà cung cấp ở mức độ họ không đưa bất kỳ JavaScript độc hại nào vào để lấy khóa cá nhân của bạn. +
+

This section is new

- ![PrivateBin logo](assets/img/productivity/privatebin.svg){ align=right } - - **PrivateBin** là một pastebin trực tuyến mã nguồn mở, tối giản, nơi máy chủ không có kiến ​​thức về dữ liệu đã dán. Dữ liệu được mã hóa/giải mã trong trình duyệt bằng 256-bit AES. tải xuống - - - [:fontawesome-brands-docker: Dockerhub](https://hub.docker.com/r/vaultwarden/server) - - [:fontawesome-brands-github: Mã nguồn](https://github.com/dani-garcia/vaultwarden) +![PrivateBin logo](assets/img/productivity/privatebin.svg){ align=right } + +**PrivateBin** là một pastebin trực tuyến mã nguồn mở, tối giản, nơi máy chủ không có kiến ​​thức về dữ liệu đã dán. Dữ liệu được mã hóa/giải mã trong trình duyệt bằng 256-bit AES. tải xuống + + - [:fontawesome-brands-docker: Dockerhub](https://hub.docker.com/r/vaultwarden/server) + - [:fontawesome-brands-github: Mã nguồn](https://github.com/dani-garcia/vaultwarden) + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -69,29 +82,35 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! khuyến nghị +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Framadate **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! cảnh báo - PrivateBin sử dụng JavaScript để xử lý mã hóa, vì vậy bạn phải tin tưởng nhà cung cấp ở mức độ họ không đưa bất kỳ JavaScript độc hại nào vào để lấy khóa cá nhân của bạn. +
+

This section is new

- ![PrivateBin logo](assets/img/productivity/privatebin.svg){ align=right } - - **PrivateBin** là một pastebin trực tuyến mã nguồn mở, tối giản, nơi máy chủ không có kiến ​​thức về dữ liệu đã dán. Dữ liệu được mã hóa/giải mã trong trình duyệt bằng 256-bit AES. tải xuống - - - [:fontawesome-brands-docker: Dockerhub](https://hub.docker.com/r/vaultwarden/server) - - [:fontawesome-brands-github: Mã nguồn](https://github.com/dani-garcia/vaultwarden) +![PrivateBin logo](assets/img/productivity/privatebin.svg){ align=right } + +**PrivateBin** là một pastebin trực tuyến mã nguồn mở, tối giản, nơi máy chủ không có kiến ​​thức về dữ liệu đã dán. Dữ liệu được mã hóa/giải mã trong trình duyệt bằng 256-bit AES. tải xuống + + - [:fontawesome-brands-docker: Dockerhub](https://hub.docker.com/r/vaultwarden/server) + - [:fontawesome-brands-github: Mã nguồn](https://github.com/dani-garcia/vaultwarden) + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/vi/router.md b/i18n/vi/router.md index 594ed768..4ca9d3e5 100644 --- a/i18n/vi/router.md +++ b/i18n/vi/router.md @@ -9,28 +9,36 @@ Dưới đây là một số hệ điều hành thay thế, có thể được s ## OpenWrt -!!! khuyến nghị +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** là một hệ điều hành (cụ thể là hệ điều hành nhúng) dựa trên nhân Linux, chủ yếu được sử dụng trên các thiết bị nhúng để định tuyến lưu lượng mạng. Các thành phần chính là Linux kernel, using-linux, uClibc và BusyBox. Tất cả các thành phần đã được tối ưu hóa về kích thước, đủ nhỏ để phù hợp với bộ nhớ và lưu trữ hạn chế có sẵn trong bộ định tuyến gia đình. - - [Homepage](https://openwrt.org){ .md-button .md-button--primary } - - ??? +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** là một hệ điều hành (cụ thể là hệ điều hành nhúng) dựa trên nhân Linux, chủ yếu được sử dụng trên các thiết bị nhúng để định tuyến lưu lượng mạng. Các thành phần chính là Linux kernel, using-linux, uClibc và BusyBox. Tất cả các thành phần đã được tối ưu hóa về kích thước, đủ nhỏ để phù hợp với bộ nhớ và lưu trữ hạn chế có sẵn trong bộ định tuyến gia đình. + +[Homepage](https://openwrt.org){ .md-button .md-button--primary } + +??? + + + +
Bạn có thể tham khảo OpenWrt's [table of hardware](https://openwrt.org/toh/start) để kiểm tra xem thiết bị của bạn có được hỗ trợ hay không. ## OPNsense -!!! khuyến nghị +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. Nó được cài đặt trên máy tính để làm tường lửa/bộ định tuyến chuyên dụng cho mạng và được chú ý về độ tin cậy và cung cấp các tính năng thường chỉ có trong các tường lửa thương mại đắt tiền. - - pfSense thường được triển khai dưới dạng tường lửa vành đai, bộ định tuyến, điểm truy cập không dây, máy chủ DHCP, máy chủ DNS và điểm cuối VPN. +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. Nó được cài đặt trên máy tính để làm tường lửa/bộ định tuyến chuyên dụng cho mạng và được chú ý về độ tin cậy và cung cấp các tính năng thường chỉ có trong các tường lửa thương mại đắt tiền. + +pfSense thường được triển khai dưới dạng tường lửa vành đai, bộ định tuyến, điểm truy cập không dây, máy chủ DHCP, máy chủ DNS và điểm cuối VPN. + + + +
OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.org/wiki/PfSense), and both projects are noted for being free and reliable firewall distributions which offer features often only found in expensive commercial firewalls. Launched in 2015, the developers of OPNsense [cited](https://docs.opnsense.org/history/thefork.html) a number of security and code-quality issues with pfSense which they felt necessitated a fork of the project, as well as concerns about Netgate's majority acquisition of pfSense and the future direction of the pfSense project. @@ -38,15 +46,17 @@ OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.or **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! cảnh báo - PrivateBin sử dụng JavaScript để xử lý mã hóa, vì vậy bạn phải tin tưởng nhà cung cấp ở mức độ họ không đưa bất kỳ JavaScript độc hại nào vào để lấy khóa cá nhân của bạn. +
+

This section is new

- ![PrivateBin logo](assets/img/productivity/privatebin.svg){ align=right } - - **PrivateBin** là một pastebin trực tuyến mã nguồn mở, tối giản, nơi máy chủ không có kiến ​​thức về dữ liệu đã dán. Dữ liệu được mã hóa/giải mã trong trình duyệt bằng 256-bit AES. tải xuống - - - [:fontawesome-brands-docker: Dockerhub](https://hub.docker.com/r/vaultwarden/server) - - [:fontawesome-brands-github: Mã nguồn](https://github.com/dani-garcia/vaultwarden) +![PrivateBin logo](assets/img/productivity/privatebin.svg){ align=right } + +**PrivateBin** là một pastebin trực tuyến mã nguồn mở, tối giản, nơi máy chủ không có kiến ​​thức về dữ liệu đã dán. Dữ liệu được mã hóa/giải mã trong trình duyệt bằng 256-bit AES. tải xuống + + - [:fontawesome-brands-docker: Dockerhub](https://hub.docker.com/r/vaultwarden/server) + - [:fontawesome-brands-github: Mã nguồn](https://github.com/dani-garcia/vaultwarden) + +
- Must be open source. - Must receive regular updates. diff --git a/i18n/zh-Hant/android.md b/i18n/zh-Hant/android.md index 3662d46f..5f50264c 100644 --- a/i18n/zh-Hant/android.md +++ b/i18n/zh-Hant/android.md @@ -1,14 +1,14 @@ --- -meta_title: "Android 推薦: GrapheneOS 與 DivestOS - Privacy Guides" +meta_title: "Android Recommendations: GrapheneOS and DivestOS - Privacy Guides" title: "Android" icon: 'simple/android' -description: Android 手機可考慮使用這些更為安全與尊重隱私的作業系統。 +description: You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. cover: android.webp schema: - "@context": http://schema.org "@type": WebPage - name: 私密 Android 作業系統 + name: Private Android Operating Systems url: "./" - "@context": http://schema.org @@ -16,14 +16,14 @@ schema: name: Android image: /assets/img/android/android.svg url: https://source.android.com/ - sameAs: https://zh.wikipedia.org/wiki/Android_ (operating_system) + sameAs: https://en.wikipedia.org/wiki/Android_(operating_system) - "@context": http://schema.org "@type": CreativeWork name: GrapheneOS image: /assets/img/android/grapheneos.svg url: https://grapheneos.org/ - sameAs: https://zh.wikipedia.org/wiki/GrapheneOS + sameAs: https://en.wikipedia.org/wiki/GrapheneOS subjectOf: "@context": http://schema.org "@type": WebPage @@ -34,7 +34,7 @@ schema: name: Divest image: /assets/img/android/divestos.svg url: https://divestos.org/ - sameAs: https://zh.wikipedia.org/wiki/DivestOS + sameAs: https://en.wikipedia.org/wiki/DivestOS subjectOf: "@context": http://schema.org "@type": WebPage @@ -47,7 +47,7 @@ schema: "@type": Brand name: Google image: /assets/img/android/google-pixel.png - sameAs: https://zh.wikipedia.org/wiki/Google_Pixel + sameAs: https://en.wikipedia.org/wiki/Google_Pixel review: "@type": Review author: @@ -68,13 +68,13 @@ schema: - "@context": http://schema.org "@type": MobileApplication - name: 安全相機 + name: Secure Camera applicationCategory: Utilities operatingSystem: Android - "@context": http://schema.org "@type": MobileApplication - name: 安全的 PDF 檢視器 + name: Secure PDF Viewer applicationCategory: Utilities operatingSystem: Android --- @@ -95,26 +95,31 @@ schema: 根據設備與這些作業系統的兼容性,列出偏好順序以安裝我們推薦的某款定制 Android 作業系統。 -!!! note "備註" +
+

Note

- 由於 OEM 停止支持,壽命終止的設備(如GrapheneOS或CalyxOS的 "延長支授 "設備)沒有完整的安全補丁(軔體更新)。 這些設備無論安裝何種軟體,都不能視為完全安全。 +由於 OEM 停止支持,壽命終止的設備(如GrapheneOS或CalyxOS的 "延長支授 "設備)沒有完整的安全補丁(軔體更新)。 這些設備無論安裝何種軟體,都不能視為完全安全。 + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS** 是隱私與安全的最佳選擇。 - - GrapheneOS 提供額外的 [安全加固](https://en.wikipedia.org/wiki/Hardening_(computing)) 與隱私改善。 它有 [加固的記憶體分配器](https://github.com/GrapheneOS/hardened_malloc)、網路、感應許可與各類[安全功能](https://grapheneos.org/features). GrapheneOS 還帶有完整的軔體更新與已簽名的建置版本,因此完全支援 verified boot。 - - [:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } +![GrapheneOS logo](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS logo](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS** 是隱私與安全的最佳選擇。 + +GrapheneOS 提供額外的 [安全加固](https://en.wikipedia.org/wiki/Hardening_(computing)) 與隱私改善。 它有 [加固的記憶體分配器](https://github.com/GrapheneOS/hardened_malloc)、網路、感應許可與各類[安全功能](https://grapheneos.org/features). GrapheneOS 還帶有完整的軔體更新與已簽名的建置版本,因此完全支援 verified boot。 + +[:octicons-home-16: Homepage](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
GrapheneOS 支援 [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), 它可以像其它普通應用一樣在沙盒中執行[Google Play 服務](https://en.wikipedia.org/wiki/Google_Play_Services) 。 這意味著您將可以利用大多數 Google Play 服務,如 [推送通知](https://firebase.google.com/docs/cloud-messaging/),完全控制其權限和訪問,同時將其包含所選的特定 [工作設定檔](os/android-overview.md#work-profile) 或 [用戶設定檔](os/android-overview.md#user-profiles)。 @@ -124,19 +129,21 @@ Google Pixel 手機是目前唯一符合 GrapheneOS [硬體安全要求](https:/ ### DivestOS -!!! recommendation +
- ![DivestOS logo](assets/img/android/divestos.svg){ align=right } - - **DivestOS** 是 [LineageOS](https://lineageos.org/)的分支。 - DivestOS 從 LineageOS 繼承了許多[支援的設備](https://divestos.org/index.php?page=devices&base=LineageOS)。 它具有簽名的建置,因此可在某些非 Pixel 設備上執行 [verified boot](https://source.android.com/security/verifiedboot)。 - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS logo](assets/img/android/divestos.svg){ align=right } + +**DivestOS** 是 [LineageOS](https://lineageos.org/)的分支。 +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. 它具有簽名的建置,因此可在某些非 Pixel 設備上執行 [verified boot](https://source.android.com/security/verifiedboot)。 + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS 有自動內核弱點 ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [補丁](https://gitlab.com/divested-mobile/cve_checker)、更少的商業專用 blobs 與自定的 [hosts](https://divested.dev/index.php?page=dnsbl) 檔案。 其加固的 WebView, [Mulch](https://gitlab.com/divested-mobile/mulch),能使 [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) 用在所有架構和 [網路狀態分區](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning),且接收額外更新。 DivestOS 還包括來自GrapheneOS 內核補丁,並通過 [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758),開啟所有可用的內核安全功能。 3.4 版之後更新的內核都包括全頁[淨化](https://lwn.net/Articles/334747/) ,所有 ~22 Clang 編譯的內核都啟用了 [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471)。 @@ -144,11 +151,14 @@ DivestOS 實現了一些最初為 GrapheneOS 開發的系統加固補丁。 Dive DivestOS 以 F-Droid 為預設的應用下載服務。 通常建議 [少用 F-Droid](#f-droid),然而這對 DivestOS 卻不可行,開發者透過 ([DivestOS 官方](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) 與 [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2))的 F-Droid 存取庫來更新他們的應用程式。 我們建議禁用官方 F-Droid 應用,並使用 [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **,啟用DivestOS 存取庫,以保持這些組件為最新。 至於其它應用,我們建議的獲取方式仍適用。

-!!! warning "警告" +
+

Warning "警告"

- DivestOS 軔體更新 [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS)和品管依所支援的設備不同而異。 雖取決於設備的兼容性,我们仍推薦 GrapheneOS。 對其它設備,DivestOS 是不錯的選項。 - - 並非所有支援設備都可 verified boot,某些設備的表現較好。 +DivestOS 軔體更新 [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS)和品管依所支援的設備不同而異。 雖取決於設備的兼容性,我们仍推薦 GrapheneOS。 對其它設備,DivestOS 是不錯的選項。 + +並非所有支援設備都可 verified boot,某些設備的表現較好。 + +
## Android 設備 @@ -156,7 +166,7 @@ DivestOS 以 F-Droid 為預設的應用下載服務。 通常建議 [少用 F-Dr 避免從電信行動營運商購置手機。 它們往往 **鎖定 bootloader** 也不支援 [OEM 解鎖](https://source.android.com/devices/bootloader/locking_unlocking)。 這類手機變體阻止安裝任何替代的 Android 發行版。 -從網路市集購買二手手機必須要非常**小心**。 請檢查賣家的信譽 如果是失竊的設備,有可能被列為 [IMEI 黑名單](https://www.gsma.com/security/resources/imei-blacklisting/)。 前一位持有者的活動發生關係也將有風險。 +從網路市集購買二手手機必須要非常**小心**。 請檢查賣家的信譽 If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). 前一位持有者的活動發生關係也將有風險。 對於 Android 設備與作業系統相容有一些提示: @@ -168,15 +178,17 @@ DivestOS 以 F-Droid 為預設的應用下載服務。 通常建議 [少用 F-Dr Google Pixel 是**唯一** 推薦的手機。 由於對第三方作業系統的適當AVB 支持和 Google 定制的 [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) 安全晶片為安全元件,Pixel 硬體安全性比目前市場上其他 Android 設備強。 -!!! recommendation +
- ![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } - - 眾所周知,**Google Pixel** 設備具有良好安全性,支持 [Verified Boot](https://source.android.com/security/verifiedboot),即使安裝自定義作業系統時也是如此。 - - 從 **Pixel 8**和 **8 Pro** 開始,Pixel 設備至少有 7年的安全更新保證,確保其使用壽命比其他競爭OEM 廠商 2-5年長得多。 - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![Google Pixel 6](assets/img/android/google-pixel.png){ align=right } + +眾所周知,**Google Pixel** 設備具有良好安全性,支持 [Verified Boot](https://source.android.com/security/verifiedboot),即使安裝自定義作業系統時也是如此。 + +從 **Pixel 8**和 **8 Pro** 開始,Pixel 設備至少有 7年的安全更新保證,確保其使用壽命比其他競爭OEM 廠商 2-5年長得多。 + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Titan M2 這類安全元件比大多數其他手機處理器的可信執行環境更為有限,因為Titan M2 只用於秘密存儲、硬體證明和速率限制,而不是用於運行 "可信 "程式。 沒有安全元件的手機必須使用 TEE *執行所有這些功能* ,從而導致更大的攻擊面。 @@ -198,43 +210,53 @@ Pixel 手機很容易安裝 GrapheneOS 只需依其 [網頁安裝程式](https:/ ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - **Shelter** 有助於利用 Android 工作設定檔功能隔離或複制設備上的應用程式。. - - Shelter 阻止聯繫人利用默認檔案管理器([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui))作跨設定檔搜尋與共享檔案 。 - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! warning "警告" +**Shelter** 有助於利用 Android 工作設定檔功能隔離或複制設備上的應用程式。. - 推薦使用 Shelter 取代 [Insular](https://secure-system.gitlab.io/Insular/)和 [Island](https://github.com/oasisfeng/island),因為 Shelter 支持[聯繫人搜索屏蔽](https://secure-system.gitlab.io/Insular/faq.html)。 - - 當使用 Shelter 時,將信任置於其開發者,Shelter 作為[設備管理員](https://developer.android.com/guide/topics/admin/device-admin)來創建工作設定檔,它有大量權限訪問存儲在工作設定檔的資料。 +Shelter 阻止聯繫人利用默認檔案管理器([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui))作跨設定檔搜尋與共享檔案 。 -### 安全相機 +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } -!!! recommendation +
- ![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } - - **Secure Camera** 專注於隱私和安全的相機應用,可以捕捉圖像、影片和二維碼。 CameraX 供應商擴展(肖像、HDR、夜視、面部修飾和自動)也支持可用設備。 - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } - [:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads "下載" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +
+

Warning "警告"

+ +推薦使用 Shelter 取代 [Insular](https://secure-system.gitlab.io/Insular/)和 [Island](https://github.com/oasisfeng/island),因為 Shelter 支持[聯繫人搜索屏蔽](https://secure-system.gitlab.io/Insular/faq.html)。 + +當使用 Shelter 時,將信任置於其開發者,Shelter 作為[設備管理員](https://developer.android.com/guide/topics/admin/device-admin)來創建工作設定檔,它有大量權限訪問存儲在工作設定檔的資料。 + +
+ +### Secure Camera + +
+ +![Secure camera logo](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure camera logo](assets/img/android/secure_camera-dark.svg#only-dark){ align=right } + +**Secure Camera** 專注於隱私和安全的相機應用,可以捕捉圖像、影片和二維碼。 CameraX 供應商擴展(肖像、HDR、夜視、面部修飾和自動)也支持可用設備。 + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
主要隱私功能包括: @@ -242,50 +264,63 @@ Pixel 手機很容易安裝 GrapheneOS 只需依其 [網頁安裝程式](https:/ - 使用新的 [媒介](https://developer.android.com/training/data-storage/shared/media) API,因此不需要 [儲存權限](https://developer.android.com/training/data-storage)。 - 除非需錄制聲音,否則無需麥克風權限。 -!!! note "備註" +
+

Note

- 目前影片沒有刪除中繼資料,未來計畫要刪除。 - - 圖片方向的中繼資料未刪除。 如果 (Secure Camera) 開啟定位, 也 **不會** 被不會偵測到。 如果之後想刪除,必須使用外部應用如[ExifEraser](data-redaction.md#exiferaser)。 +目前影片沒有刪除中繼資料,未來計畫要刪除。 -### 安全的 PDF 檢視器 +圖片方向的中繼資料未刪除。 如果 (Secure Camera) 開啟定位, 也 **不會** 被不會偵測到。 如果之後想刪除,必須使用外部應用如[ExifEraser](data-redaction.md#exiferaser)。 -!!! 推薦 +
- ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **Secure PDF Viewer** 是基於 [pdf.js](https://en.wikipedia.org/wiki/PDF.js)的PDF 瀏覽器,無需任何權限。 此 PDF 被送入 [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview)。 這意味著它不需要權限就能直接存取內容或檔案。 - - [內容安全政策](https://en.wikipedia.org/wiki/Content_Security_Policy)用來強制要求 WebView 內的JavaScript 和造型屬性需全為靜態內容。 - - [:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } - - ??? downloads "下載" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +### Secure PDF Viewer + +
+ +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![Secure PDF Viewer logo](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**Secure PDF Viewer** 是基於 [pdf.js](https://en.wikipedia.org/wiki/PDF.js)的PDF 瀏覽器,無需任何權限。 此 PDF 被送入 [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview)。 這意味著它不需要權限就能直接存取內容或檔案。 + +[內容安全政策](https://en.wikipedia.org/wiki/Content_Security_Policy)用來強制要求 WebView 內的JavaScript 和造型屬性需全為靜態內容。 + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## 獲取應用程式 ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** 應用管理器可以直接透過開發者自己的發佈頁來安裝與更新應用。(例如 GitHub, GitLab 等等.), 取代集中式的應用商店或代碼儲存庫。 在 Android 12 以上版本,可支援自動背景更新。 - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads "下載" - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** 應用管理器可以直接透過開發者自己的發佈頁來安裝與更新應用。(例如 GitHub, GitLab 等等.), 取代集中式的應用商店或代碼儲存庫。 在 Android 12 以上版本,可支援自動背景更新。 + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium 可以從不同來源下載 APK 安裝檔,由使用者自行判斷其來源與應用是否可靠合法。 例如使用 Obtainium 從 [Signal APK 登錄頁 ](https://signal.org/android/apk/) 來下載安裝 Signal 應該沒問題,但如果透過第三方 APK 儲放庫如 Aptoide o 或 APKPure 則可能有其它風險。 安裝惡意*更新*的風險較低,因為 Android 自身會在安裝之前驗證所有應用程式更新是否由與手機上現有應用程式為相同開發人員所簽署。 @@ -297,19 +332,24 @@ GrapheneOS 應用商店可在 [GitHub](https://github.com/GrapheneOS/Apps/releas Google Play商店需要登錄 Google 帳戶,這對隱私來說不是很好。 可以使用替代客戶端,如 Aurora Store 來解決這個問題。 -!!! recommendation +
- ![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } - - **Aurora Store** 為 Google Play Store 客戶端,其無須 Google 帳戶 或 microG 即可下戴應用。 - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? downloads "下載" - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store logo](assets/img/android/aurora-store.webp){ align=right } + +**Aurora Store** 為 Google Play Store 客戶端,其無須 Google 帳戶 或 microG 即可下戴應用。 + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store不允許其匿名帳戶下載付費應用程式。 您可以選擇使用 Google 帳戶登錄 Aurora Store 來下載所購買的應用程式,這確實可以訪問您的 Google 安裝應用程式列表,但是設備仍可無需完整的Google Play 客戶端、Google Play 服務或microG。 @@ -374,17 +414,23 @@ Aurora Store不允許其匿名帳戶下載付費應用程式。 您可以選擇 也就是說, [F-droid](https://f-droid.org/en/packages/) 和 [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) 存取庫有無數應用程式,所以它們成為搜索和發現開源應用程式的有用工具,然後通過 Play Store、Aurora Store 或直接從開發者獲得 APK 下載。 透過此方法尋找新應用程式時,應該做出最佳判斷,並密切注意應用程式的更新頻率。 過時的應用程式可能依賴不支援的程式庫,從而帶來潛在的安全風險。 -!!! "F-Droid Basic" 提醒 +
+

F-Droid Basic

- 在某些罕見情況下,應用程式開發者將只通過 F-droid 發布([Gadgetbridge](https://gadgetbridge.org/)就是一例。) 如果真需要這樣的應用程式,建議使用 [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) ,而不是從官方的 F-droid 應用程式來獲得。 F-Droid Basic 可以進行無需特權或 root 的更新,且具降低的功能集(限制攻擊面)。 +在某些罕見情況下,應用程式開發者將只通過 F-droid 發布([Gadgetbridge](https://gadgetbridge.org/)就是一例。) 如果真需要這樣的應用程式,建議使用 [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) ,而不是從官方的 F-droid 應用程式來獲得。 F-Droid Basic 可以進行無需特權或 root 的更新,且具降低的功能集(限制攻擊面)。 + +
## 標準 **請注意,我們所推薦專案沒有任何瓜葛。 ** 除了 [標準準則](about/criteria.md)外,我們還發展出一套明確要求以提出客觀建議。 我們建議您在選擇使用項目之前先熟悉此列表,並進行自己的研究,以確保它是您的正確選擇。 -!!! example "此部分是新的" +
+

此部份新增

- 我們正在努力為我們網站的每個部分建立定義的標準,這可能會有所變化。 如果您對我們的標準有任何疑問,請在 [論壇上提問](https://discuss.privacyguides.net/latest) ,如果沒有列出,請不要認為我們在提出建議時沒有考慮到某些事情。 當我們推薦一個項目時,有許多因素被考慮和討論,記錄每一個項目都是正在進行式。 +我們正在努力為我們網站的每個部分建立定義的標準,這可能會有所變化。 如果您對我們的標準有任何疑問,請在 [論壇上提問](https://discuss.privacyguides.net/latest) ,如果沒有列出,請不要認為我們在提出建議時沒有考慮到某些事情。 當我們推薦一個項目時,有許多因素被考慮和討論,記錄每一個項目都是正在進行式。 + +
### 作業系統 diff --git a/i18n/zh-Hant/calendar.md b/i18n/zh-Hant/calendar.md index 22084bac..30058e49 100644 --- a/i18n/zh-Hant/calendar.md +++ b/i18n/zh-Hant/calendar.md @@ -1,7 +1,7 @@ --- title: "行事曆同步" icon: material/calendar -description: 行事曆包含一些您最敏感的資料,使用實現靜態加密的產品。 +description: Calendars contain some of your most sensitive data; use products that implement encryption at rest. cover: calendar.webp --- @@ -9,48 +9,58 @@ cover: calendar.webp ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** 在其支援平台上提供免費加密的行事曆。 功能包括:所有數據的自動E2EE ,共享功能,匯入/匯出功能,多因素驗證和 [more](https://tuta.com/calendar-app-comparison/)。 - - 多個行事曆和擴展共享功能僅限於付費訂閱者。 - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads "下載" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** 在其支援平台上提供免費加密的行事曆。 功能包括:所有數據的自動E2EE ,共享功能,匯入/匯出功能,多因素驗證和 [more](https://tuta.com/calendar-app-comparison/)。 + +多個行事曆和擴展共享功能僅限於付費訂閱者。 + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar -!!! recommendation +
- ![Proton](assets/img/calendar/proton-calendar.svg){ align=right } - - **Proton Calendar** 是 Proton 會員可透過網路或行動客戶端使用的加密行事曆服務。 功能包括:所有資料自動 E2EE 、共享、匯入/匯出等等[眾多功能](https://proton.me/support/proton-calendar-guide). 免費會員可以使用 3 個行事曆,付費訂閱者最多可以創建 25 個行事曆。 擴展共享功能也僅限於付費訂閱者。 - - [:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads "下載" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](assets/img/calendar/proton-calendar.svg){ align=right } + +**Proton Calendar** 是 Proton 會員可透過網路或行動客戶端使用的加密行事曆服務。 功能包括:所有資料自動 E2EE 、共享、匯入/匯出等等[眾多功能](https://proton.me/support/proton-calendar-guide). 免費會員可以使用 3 個行事曆,付費訂閱者最多可以創建 25 個行事曆。 擴展共享功能也僅限於付費訂閱者。 + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
但截至2024 年1 月,Proton @@ -62,12 +72,12 @@ cover: calendar.webp **請注意,我們所推薦專案沒有任何瓜葛。 ** 除了 [標準準則](about/criteria.md)外,我們還發展出一套明確要求以提出客觀建議。 我們建議您在選擇使用項目之前先熟悉此列表,並進行自己的研究,以確保它是您的正確選擇。 -!!! example "此部分是新的" - - 我們正在努力為我們網站的每個部分建立定義的標準,這可能會有所變化。 如果您對我們的標準有任何疑問,請在 [論壇上提問](https://discuss.privacyguides.net/latest) ,如果沒有列出,請不要認為我們在提出建議時沒有考慮到某些事情。 當我們推薦一個項目時,有許多因素被考慮和討論,記錄每一個項目都是正在進行式。 - +
+

此部份新增

+我們正在努力為我們網站的每個部分建立定義的標準,這可能會有所變化。 如果您對我們的標準有任何疑問,請在 [論壇上提問](https://discuss.privacyguides.net/latest) ,如果沒有列出,請不要認為我們在提出建議時沒有考慮到某些事情。 當我們推薦一個項目時,有許多因素被考慮和討論,記錄每一個項目都是正在進行式。 +
### 最低合格 diff --git a/i18n/zh-Hant/cloud.md b/i18n/zh-Hant/cloud.md index e26e455c..8a7e85ca 100644 --- a/i18n/zh-Hant/cloud.md +++ b/i18n/zh-Hant/cloud.md @@ -10,29 +10,37 @@ cover: cloud.webp 如果這些替代方案不符合您的需求,建議您考慮使用其他雲端提供商的加密軟件,例如 [Cryptomator](encryption.md#cryptomator-cloud) 。 把 Cryptomator 結合在 **任一種** 雲服務商(包含這裡推薦的) 也是好方法,可減低某服務商原生客立端加密漏洞之風險。 -??? question "找不到 Nextcloud?" +
+Looking for Nextcloud? - Nextcloud 是 [仍然是一個推薦的工具](productivity.md) ,可用於自我託管檔案管理套件,但目前不推薦第三方 Nextcloud儲存服務提供商,因為我們 [不建議]使用](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud 家庭用戶版內置的 E2EE 功能。 +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** 是來自流行的加密電子郵件供應商[Proton Mail](email.md#proton-mail)的瑞士加密雲存儲供應商。 - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads "下載" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** 是來自流行的加密電子郵件供應商[Proton Mail](email.md#proton-mail)的瑞士加密雲存儲供應商。 + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
Proton Drive 網路應用程式已於[2021年](https://proton.me/blog/security-audit-all-proton-apps)由 Securitum 獨立審核,並未公開完整詳細資料,但 Securitum 的認證信函指出: @@ -42,23 +50,28 @@ Proton Drive 全新移動客戶端軟體尚未經過第三方公開審核。 ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** 為 2011年創辦於瑞士- 匃牙利的加密雲端儲存供應商。 Tresorit 由瑞士郵政擁有,瑞士郵政是瑞士的國家郵政服務。 - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads "下載" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** 為 2011年創辦於瑞士- 匃牙利的加密雲端儲存供應商。 Tresorit 由瑞士郵政擁有,瑞士郵政是瑞士的國家郵政服務。 + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit 已獲得多項獨立安全稽核: @@ -76,9 +89,12 @@ Tresorit 已獲得多項獨立安全稽核: **請注意,我們所推薦專案沒有任何瓜葛。 ** 除了 [標準準則](about/criteria.md)外,我們還發展出一套明確要求以提出客觀建議。 建議您在選擇使用項目之前先熟悉此列表,並進行自己的研究,以確保它是您的正確選擇。 -!!! example "此部分是新的" +
+

此部份新增

- 我們正在努力為我們網站的每個部分建立定義的標準,這可能會有所變化。 如果您對我們的標準有任何疑問,請在 [論壇上提問](https://discuss.privacyguides.net/latest) ,如果沒有列出,請不要認為我們在提出建議時沒有考慮到某些事情。 當我們推薦一個項目時,有許多因素被考慮和討論,記錄每一個項目都是正在進行式。 +我們正在努力為我們網站的每個部分建立定義的標準,這可能會有所變化。 如果您對我們的標準有任何疑問,請在 [論壇上提問](https://discuss.privacyguides.net/latest) ,如果沒有列出,請不要認為我們在提出建議時沒有考慮到某些事情。 當我們推薦一個項目時,有許多因素被考慮和討論,記錄每一個項目都是正在進行式。 + +
### 最低合格要求 diff --git a/i18n/zh-Hant/email-clients.md b/i18n/zh-Hant/email-clients.md index e3a409d4..c0bb73aa 100644 --- a/i18n/zh-Hant/email-clients.md +++ b/i18n/zh-Hant/email-clients.md @@ -1,41 +1,49 @@ --- title: "電子郵件客戶端程式" icon: material/email-open -description: 這些電子郵件客戶端尊重隱私並支持OpenPGP電子郵件加密。 +description: These email clients are privacy-respecting and support OpenPGP email encryption. cover: email-clients.webp --- 我們的推薦清單包含支援 [OpenPGP](encryption.md#openpgp) 和如[Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth)強認證的電子郵件用戶端 。 OAuth允許您使用 [多因素驗證](basics/multi-factor-authentication.md) 並防止帳戶被盜。 -??? warning "電子郵件不提供前向保密" +
+Email does not provide forward secrecy - 當使用端到端加密( E2EE )技術(如OpenPGP )時,電子郵件仍然會有一些未在電子郵件標頭中加密的[一些中繼數據](email.md#email-metadata-overview)。 - - OpenPGP 也不支援 [前向保密](https://en.wikipedia.org/wiki/Forward_secrecy) ,這意味著如果你或收件人的私鑰被盜,所有以前用它加密的訊息都會被曝光: [如何保護我的私鑰?](basics/email-security.md)考慮使用提供前向保密的媒介: - - [通時通訊](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## 跨平臺 ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** 是一個免費、開源、跨平臺的電子郵件、新聞組、新聞提要和聊天(XMPP、IRC、Twitter)客戶端,由Thunderbird 社區開發,之前由 Mozilla 基金會開發。 - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads "下載" - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** 是一個免費、開源、跨平臺的電子郵件、新聞組、新聞提要和聊天(XMPP、IRC、Twitter)客戶端,由Thunderbird 社區開發,之前由 Mozilla 基金會開發。 + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### 建議配置 @@ -60,169 +68,217 @@ cover: email-clients.webp ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail標誌](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** 包含在 macOS,並可利用[GPG Suite](encryption.md#gpg-suite)擴展支援 OpenPGP,增加了發送PGP 加密電子郵件的能力。 - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail標誌](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** 包含在 macOS,並可利用[GPG Suite](encryption.md#gpg-suite)擴展支援 OpenPGP,增加了發送PGP 加密電子郵件的能力。 + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
[macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) 與[iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios) 的Apple Mail 可在後台載入遠端內容或完全封鎖並能隱藏您的 IP 位址。 ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** 是一個付費的電子郵件用戶端,提供無縫的端到端加密安全功能,如生物識別應用程式鎖定。 - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads "下載" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! warning "警告" +**Canary Mail** 是一個付費的電子郵件用戶端,提供無縫的端到端加密安全功能,如生物識別應用程式鎖定。 - Canary Mail 最近才發布了 Windows 和 Android 用戶端,我們不認為它們已如 iOS和 Mac 用戶端一樣穩定。 +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning "警告" + +Canary Mail 最近才發布了 Windows 和 Android 用戶端,我們不認為它們已如 iOS和 Mac 用戶端一樣穩定。 + +
Canary Mail 源碼為封閉式。 我們推薦它,因為 iOS 電子郵件客戶端支持 PGP E2EE 的選擇很少。 ### FairEmail (Android) -!!! recommendation +
- ![FairEmail標誌](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** 是一個極簡的開源電子郵件應用程式,使用開放標準(IMAP, SMTP, OpenPGP ),數據和電池使用量低。 - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads "下載" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail標誌](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** 是一個極簡的開源電子郵件應用程式,使用開放標準(IMAP, SMTP, OpenPGP ),數據和電池使用量低。 + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** 是個人資訊管理應用程式,提供綜合郵件、行事曆和聯絡簿功能。 Evolution有廣泛的 [文檔](https://help.gnome.org/users/evolution/stable/)來幫助您開始。 - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads "下載" - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** 是個人資訊管理應用程式,提供綜合郵件、行事曆和聯絡簿功能。 Evolution有廣泛的 [文檔](https://help.gnome.org/users/evolution/stable/)來幫助您開始。 + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** 是一個獨立的郵件應用程式,同時支援 POP3 和IMAP 郵箱,但只支援 IMAP 推送郵件。 - - 未來 K-9 Mai l將成為 [官方品牌](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird Android 用戶端。 - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads "下載" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! warning "警告" +**K-9 Mail** 是一個獨立的郵件應用程式,同時支援 POP3 和IMAP 郵箱,但只支援 IMAP 推送郵件。 - 當回覆郵件群組中的某人時,「回覆」選項也可能包括郵件群組。 如需更多資訊,請參閱 [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738)。 +未來 K-9 Mai l將成為 [官方品牌](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird Android 用戶端。 + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning "警告"

+ +當回覆郵件群組中的某人時,「回覆」選項也可能包括郵件群組。 如需更多資訊,請參閱 [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738)。 + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** 是來自 [KDE](https://kde.org)專案的個人資訊管理器(PIM)應用程式。 它提供了郵件客戶端、地址簿、待辦事項和 RSS 客戶端。 - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads "下載" - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** 是來自 [KDE](https://kde.org)專案的個人資訊管理器(PIM)應用程式。 它提供了郵件客戶端、地址簿、待辦事項和 RSS 客戶端。 + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (瀏覽器) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** 是一個瀏覽器擴充功能,可按照 OpenPGP 加密標準交換加密電子郵件。 - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads "下載" - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** 是一個瀏覽器擴充功能,可按照 OpenPGP 加密標準交換加密電子郵件。 + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** 是 Linux 和 BSD 的開源命令行郵件閱讀器(或MUA )。 它是 [Mutt](https://en.wikipedia.org/wiki/Mutt_ (email_client)) 的分支,具有附加功能。 - - NeoMutt 是一個文字指令的客戶端,具有陡峭的學習曲線。 然而,它有高度自制的特色。 - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads "下載" - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** 是 Linux 和 BSD 的開源命令行郵件閱讀器(或MUA )。 它是 [Mutt](https://en.wikipedia.org/wiki/Mutt_ (email_client)) 的分支,具有附加功能。 + +NeoMutt 是一個文字指令的客戶端,具有陡峭的學習曲線。 然而,它有高度自制的特色。 + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## 標準 **請注意,我們所推薦專案沒有任何瓜葛。 ** 除了 [標準準則](about/criteria.md)外,我們還發展出一套明確要求以提出客觀建議。 我們建議您在選擇使用項目之前先熟悉此列表,並進行自己的研究,以確保它是您的正確選擇。 -!!! example "此部分是新的" +
+

此部份新增

- 我們正在努力為我們網站的每個部分建立定義的標準,這可能會有所變化。 如果您對我們的標準有任何疑問,請在 [論壇上提問](https://discuss.privacyguides.net/latest) ,如果沒有列出,請不要認為我們在提出建議時沒有考慮到某些事情。 當我們推薦一個項目時,有許多因素被考慮和討論,記錄每一個項目都是正在進行式。 +我們正在努力為我們網站的每個部分建立定義的標準,這可能會有所變化。 如果您對我們的標準有任何疑問,請在 [論壇上提問](https://discuss.privacyguides.net/latest) ,如果沒有列出,請不要認為我們在提出建議時沒有考慮到某些事情。 當我們推薦一個項目時,有許多因素被考慮和討論,記錄每一個項目都是正在進行式。 + +
### 最低合格要求 diff --git a/i18n/zh-Hant/financial-services.md b/i18n/zh-Hant/financial-services.md index d086defb..0fe383e7 100644 --- a/i18n/zh-Hant/financial-services.md +++ b/i18n/zh-Hant/financial-services.md @@ -12,37 +12,48 @@ cover: financial-services.webp 有許多服務提供“虛擬簽帳卡” ,在線商家接受此種付款方式則在大多數情況下不會透露您實際銀行或帳單信息。 請注意,這些金融服務 **並不是** 匿名,且受「了解您的客戶」( KYC )法律的約束,並可能需要客戶身份證明文件或其他識別信息。 這些服務主要保護您免受商家資料洩露、營銷機構粗糙的跟蹤或購買聯結以及線上資料盜竊;這些並 **不能** 在購買時完全匿名。 -!!! tip "檢查您目前的銀行" +
+

Check your current bank

- 許多銀行和信用卡提供商提供本機虛擬卡功能。 如果您使用已提供的選項,則在大多數情況下使用時請依循以下建議。 你不信任把個人資料託付給各方人士。 +許多銀行和信用卡提供商提供本機虛擬卡功能。 如果您使用已提供的選項,則在大多數情況下使用時請依循以下建議。 你不信任把個人資料託付給各方人士。 + +
### Privacy.com (美國) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com 標誌](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com** 的免費方案每月最多創建12 張虛擬卡,設定卡片的支付上限與立即關閉卡片。 付費計劃則每月最多創建 36 張卡,購買時可獲得1% 現金返還,並向銀行隱藏交易信息。 - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com 標誌](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com** 的免費方案每月最多創建12 張虛擬卡,設定卡片的支付上限與立即關閉卡片。 付費計劃則每月最多創建 36 張卡,購買時可獲得1% 現金返還,並向銀行隱藏交易信息。 + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com 預設情況下將您購買的商家資訊提供給您的銀行。 付費版的「謹慎商家」功能會向您的銀行隱藏商家資訊,因此銀行只會看到使用 Privacy.com 進行購買,不會看到這筆錢花在哪裡,但這並不是萬無一失的, Privacy.com 仍然了解您花錢的商家。 ### MySudo (美國,付費) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo標誌](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** 根據您購買的方案最多提供 9張虛擬卡。 付費方案還包括一些有助於私密購物的功能,例如虛擬電話號碼和電子郵件地址,但我們通常建議使用專業 [電子郵件別名提供商](email.md)進行廣泛的別名使用保護。 - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo標誌](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** 根據您購買的方案最多提供 9張虛擬卡。 付費方案還包括一些有助於私密購物的功能,例如虛擬電話號碼和電子郵件地址,但我們通常建議使用專業 [電子郵件別名提供商](email.md)進行廣泛的別名使用保護。 + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo 虛擬卡目前只能在其 iOS應用上使用。 @@ -50,9 +61,12 @@ MySudo 虛擬卡目前只能在其 iOS應用上使用。 **請注意,我們與所推薦專案沒有任何牽扯。 ** 除了 [我們的標準準則](about/criteria.md)外,還有一套明確要求以提出客觀建議。 我們建議您在選擇使用項目之前先熟悉此列表,並進行自己的研究,以確保它是您的正確選擇。 -!!! example "此部分是新的" +
+

此部份新增

- 我們正在努力為我們網站的每個部分建立定義的標準,這可能會有所變化。 如果您對我們的標準有任何疑問,請在[論壇上提問] (https://discuss.privacyguides.net/latest) ,如果沒有列出,請不要認為我們在提出建議時沒有考慮到某些事情。 當我們推薦一個項目時,有許多因素被考慮和討論,記錄每一個項目都是正在進行式。 +我們正在努力為我們網站的每個部分建立定義的標準,這可能會有所變化。 如果您對我們的標準有任何疑問,請在[論壇上提問] (https://discuss.privacyguides.net/latest) ,如果沒有列出,請不要認為我們在提出建議時沒有考慮到某些事情。 當我們推薦一個項目時,有許多因素被考慮和討論,記錄每一個項目都是正在進行式。 + +
- 允許創建多張卡片,作為商家和您的個人財務之間的盾牌。 - 卡片公司不得要求您向商戶提供準確的帳單地址資訊。 @@ -63,23 +77,30 @@ MySudo 虛擬卡目前只能在其 iOS應用上使用。 ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (美國和加拿大提供)允許您為各種商家購買禮品卡。 - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (美國和加拿大提供)允許您為各種商家購買禮品卡。 + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### 標準 **請注意,我們所推薦專案沒有任何瓜葛。 ** 除了 [標準準則](about/criteria.md)外,我們還發展出一套明確要求以提出客觀建議。 我們建議您在選擇使用項目之前先熟悉此列表,並進行自己的研究,以確保它是您的正確選擇。 -!!! example "此部分是新的" +
+

此部份新增

- 我們正在努力為我們網站的每個部分建立定義的標準,這可能會有所變化。 如果您對我們的標準有任何疑問,請在 [論壇上提問](https://discuss.privacyguides.net/latest) ,如果沒有列出,請不要認為我們在提出建議時沒有考慮到某些事情。 當我們推薦一個項目時,有許多因素被考慮和討論,記錄每一個項目都是正在進行式。 +我們正在努力為我們網站的每個部分建立定義的標準,這可能會有所變化。 如果您對我們的標準有任何疑問,請在 [論壇上提問](https://discuss.privacyguides.net/latest) ,如果沒有列出,請不要認為我們在提出建議時沒有考慮到某些事情。 當我們推薦一個項目時,有許多因素被考慮和討論,記錄每一個項目都是正在進行式。 + +
- 接受付款 [使用推薦加密貨幣](cryptocurrency.md)。 - 無需提供身份證件。 diff --git a/i18n/zh-Hant/router.md b/i18n/zh-Hant/router.md index deb91a1d..6922024b 100644 --- a/i18n/zh-Hant/router.md +++ b/i18n/zh-Hant/router.md @@ -1,7 +1,7 @@ --- title: "路由器軔體" icon: material/router-wireless -description: 這些替代作業系統可用於保護您的路由器或Wi-Fi接入點。 +description: These alternative operating systems can be used to secure your router or Wi-Fi access point. cover: router.webp --- @@ -9,32 +9,40 @@ cover: router.webp ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** 是一個基於 Linux 的操作系統;它主要用於嵌入式設備以路由網路流量。 它包括util-linux , uClibc和BusyBox。 所有組件都已為家庭路由器進行了優化。 - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** 是一個基於 Linux 的操作系統;它主要用於嵌入式設備以路由網路流量。 它包括util-linux , uClibc和BusyBox。 所有組件都已為家庭路由器進行了優化。 + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } + + + +
您可以參考 OpenWrt 的 [硬體表格](https://openwrt.org/toh/start) 檢查您的設備是否支援。 ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** 是開源的、基於FreeBSD 的防火牆和路由平臺,它包含許多進階功能,如流量整形、負載平衡和 VPN 功能,且有插件的形式提供更多功能。 OPNsense 通常部署作邊界防火牆、路由器、無線存取點、DHCP伺服器、DNS伺服器和 VPN 端點。 - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** 是開源的、基於FreeBSD 的防火牆和路由平臺,它包含許多進階功能,如流量整形、負載平衡和 VPN 功能,且有插件的形式提供更多功能。 OPNsense 通常部署作邊界防火牆、路由器、無線存取點、DHCP伺服器、DNS伺服器和 VPN 端點。 + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } + + + +
OPNsense 一開始是從 [pfSense](https://en.wikipedia.org/wiki/PfSense)分支另外發展出來,兩個項目都以免費和可靠的防火牆發行版而聞名,它們提供了通常只有昂貴的商業防火牆才具備的功能。 2015 年啟動後,OPNsense 開發人員[引述](https://docs.opnsense.org/history/thefork.html) pfSense 專案中一連串安全與代碼品質問題,因此覺得有必要對須目作分支。再者 Netgate 取得 pfSense 大部份所有權, pfSense 未來的方向也令他們擔憂。 @@ -42,9 +50,12 @@ OPNsense 一開始是從 [pfSense](https://en.wikipedia.org/wiki/PfSense)分支 **請注意,我們所推薦專案沒有任何瓜葛。 ** 除了 [標準準則](about/criteria.md)外,我們還發展出一套明確要求以提出客觀建議。 我們建議您在選擇使用項目之前先熟悉此列表,並進行自己的研究,以確保它是您的正確選擇。 -!!! example "此部分是新的" +
+

此部份新增

- 我們正在努力為這個網站的各個部分建立明確標準,它可能依情況變化。 如果您對我們的標準有任何疑問,請 [論壇上提問](https://discuss.privacyguides.net/latest) ,如果沒有列出,請不要認為我們在提出建議時沒有考慮到某些事情。 當我們推薦一個項目時,有許多因素被考慮和討論,記錄每一個項目都是正在進行式。 +我們正在努力為這個網站的各個部分建立明確標準,它可能依情況變化。 如果您對我們的標準有任何疑問,請 [論壇上提問](https://discuss.privacyguides.net/latest) ,如果沒有列出,請不要認為我們在提出建議時沒有考慮到某些事情。 當我們推薦一個項目時,有許多因素被考慮和討論,記錄每一個項目都是正在進行式。 + +
- 它必須是開源的。 - 必須定期更新。 diff --git a/i18n/zh/android.md b/i18n/zh/android.md index 0e7061f9..112ccf81 100644 --- a/i18n/zh/android.md +++ b/i18n/zh/android.md @@ -45,7 +45,7 @@ schema: name: Pixel brand: "@type": Brand - name: 谷歌 + name: Google image: /assets/img/android/google-pixel.png sameAs: https://en.wikipedia.org/wiki/Google_Pixel review: @@ -74,7 +74,7 @@ schema: - "@context": http://schema.org "@type": MobileApplication - name: 安全的PDF查看器(Secure PDF Viewer) + name: Secure PDF Viewer applicationCategory: Utilities operatingSystem: 安卓 --- @@ -95,26 +95,31 @@ schema: We recommend installing one of these custom Android operating systems on your device, listed in order of preference, depending on your device's compatibility with these operating systems. -!!! note +
+

Note

- 由于OEM停止支持,寿命终止的设备(如GrapheneOS或CalyxOS的 "扩展支持 "设备)没有完整的安全补丁(固件更新)。 无论安装何种软件,都不能认为这些设备是完全安全的。 +由于OEM停止支持,寿命终止的设备(如GrapheneOS或CalyxOS的 "扩展支持 "设备)没有完整的安全补丁(固件更新)。 无论安装何种软件,都不能认为这些设备是完全安全的。 + +
### GrapheneOS -!!! recommendation +
- ![GrapheneOS标志](assets/img/android/grapheneos.svg#only-light){ align=right } - ![GrapheneOS标志](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } - - **GrapheneOS**是涉及隐私和安全的最佳选择。 - - GrapheneOS提供了额外的[安全加固](https://en.wikipedia.org/wiki/Hardening_(计算))和隐私改进。 它有一个[加固的内存分配器](https://github.com/GrapheneOS/hardened_malloc)、网络和传感器权限,以及其他各种[安全功能](https://grapheneos.org/features)。 GrapheneOS还带有完整的固件更新和签名构建,因此完全支持验证性启动。 - - [:octicons-home-16: 主页](https://grapheneos.org/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="隐私政策" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=文档} - [:octicons-code-16:](https://grapheneos.org/source){ .card-link title="源代码" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title="贡献" } +![GrapheneOS标志](assets/img/android/grapheneos.svg#only-light){ align=right } +![GrapheneOS标志](assets/img/android/grapheneos-dark.svg#only-dark){ align=right } + +**GrapheneOS**是涉及隐私和安全的最佳选择。 + +GrapheneOS提供了额外的[安全加固](https://en.wikipedia.org/wiki/Hardening_(计算))和隐私改进。 它有一个[加固的内存分配器](https://github.com/GrapheneOS/hardened_malloc)、网络和传感器权限,以及其他各种[安全功能](https://grapheneos.org/features)。 GrapheneOS还带有完整的固件更新和签名构建,因此完全支持验证性启动。 + +[:octicons-home-16: 主页](https://grapheneos.org/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://grapheneos.org/faq#privacy-policy){ .card-link title="隐私政策" } +[:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=文档} +[:octicons-code-16:](https://grapheneos.org/source){ .card-link title="源代码" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title="贡献" } + +
GrapheneOS supports [Sandboxed Google Play](https://grapheneos.org/usage#sandboxed-google-play), which runs [Google Play Services](https://en.wikipedia.org/wiki/Google_Play_Services) fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as [push notifications](https://firebase.google.com/docs/cloud-messaging/), while giving you full control over their permissions and access, and while containing them to a specific [work profile](os/android-overview.md#work-profile) or [user profile](os/android-overview.md#user-profiles) of your choice. @@ -124,19 +129,21 @@ Google Pixel phones are the only devices that currently meet GrapheneOS's [hardw ### DivestOS -!!! recommendation +
- ![DivestOS标志](assets/img/android/divestos.svg){ align=right } - - **DivestOS**是 [LineageOS](https://lineageos.org/)的一个软分叉。 - DivestOS从LineageOS继承了许多[支持的设备](https://divestos.org/index.php?page=devices&base=LineageOS)。 它有签名的构建,使得在一些非Pixel设备上可以有[验证的启动](https://source.android.com/security/verifiedboot)。 - - [:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } - [:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } - [:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } - [:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } +![DivestOS标志](assets/img/android/divestos.svg){ align=right } + +**DivestOS**是 [LineageOS](https://lineageos.org/)的一个软分叉。 +DivestOS inherits many [supported devices](https://divestos.org/index.php?page=devices&base=LineageOS) from LineageOS. 它有签名的构建,使得在一些非Pixel设备上可以有[验证的启动](https://source.android.com/security/verifiedboot)。 + +[:octicons-home-16: Homepage](https://divestos.org){ .md-button .md-button--primary } +[:simple-torbrowser:](http://divestoseb5nncsydt7zzf5hrfg44md4bxqjs5ifcv4t7gt7u6ohjyyd.onion){ .card-link title="Onion Service" } +[:octicons-eye-16:](https://divestos.org/index.php?page=privacy_policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://divestos.org/index.php?page=faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/divested-mobile){ .card-link title="Source Code" } +[:octicons-heart-16:](https://divested.dev/pages/donate){ .card-link title=Contribute } + +
DivestOS has automated kernel vulnerability ([CVE](https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures)) [patching](https://gitlab.com/divested-mobile/cve_checker), fewer proprietary blobs, and a custom [hosts](https://divested.dev/index.php?page=dnsbl) file. Its hardened WebView, [Mulch](https://gitlab.com/divested-mobile/mulch), enables [CFI](https://en.wikipedia.org/wiki/Control-flow_integrity) for all architectures and [network state partitioning](https://developer.mozilla.org/en-US/docs/Web/Privacy/State_Partitioning), and receives out-of-band updates. DivestOS also includes kernel patches from GrapheneOS and enables all available kernel security features via [defconfig hardening](https://github.com/Divested-Mobile/DivestOS-Build/blob/master/Scripts/Common/Functions.sh#L758). All kernels newer than version 3.4 include full page [sanitization](https://lwn.net/Articles/334747/) and all ~22 Clang-compiled kernels have [`-ftrivial-auto-var-init=zero`](https://reviews.llvm.org/D54604?id=174471) enabled. @@ -144,11 +151,14 @@ DivestOS implements some system hardening patches originally developed for Graph DivestOS uses F-Droid as its default app store. We normally [recommend avoiding F-Droid](#f-droid), but doing so on DivestOS isn't viable; the developers update their apps via their own F-Droid repositories ([DivestOS Official](https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) and [DivestOS WebView](https://divestos.org/fdroid/webview/?fingerprint=FB426DA1750A53D7724C8A582B4D34174E64A84B38940E5D5A802E1DFF9A40D2)). We recommend disabling the official F-Droid app and using [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) **with the DivestOS repositories enabled** to keep those components up to date. For other apps, our recommended methods of obtaining them still apply. -!!! 推荐 +
+

Warning

- DivestOS的固件更新 [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS)和质量控制在其支持的设备中各不相同。 我们仍然推荐GrapheneOS,这取决于你设备的兼容性。 对于其他设备,DivestOS是一个不错的选择。 - - 并非所有支持的设备都有验证启动,有些设备的验证启动性能比其他设备好。 +DivestOS的固件更新 [status](https://gitlab.com/divested-mobile/firmware-empty/-/blob/master/STATUS)和质量控制在其支持的设备中各不相同。 我们仍然推荐GrapheneOS,这取决于你设备的兼容性。 对于其他设备,DivestOS是一个不错的选择。 + +并非所有支持的设备都有验证启动,有些设备的验证启动性能比其他设备好。 + +
## 安卓设备 @@ -156,7 +166,7 @@ When purchasing a device, we recommend getting one as new as possible. The softw Avoid buying phones from mobile network operators. These often have a **locked bootloader** and do not support [OEM unlocking](https://source.android.com/devices/bootloader/locking_unlocking). These phone variants will prevent you from installing any kind of alternative Android distribution. -Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of [IMEI blacklisting](https://www.gsma.com/security/resources/imei-blacklisting/). There is also a risk involved with you being associated with the activity of the previous owner. +Be very **careful** about buying second hand phones from online marketplaces. Always check the reputation of the seller. If the device is stolen, there's a possibility of it being entered in the [IMEI database](https://www.gsma.com/get-involved/working-groups/terminal-steering-group/imei-database). There is also a risk involved with you being associated with the activity of the previous owner. A few more tips regarding Android devices and operating system compatibility: @@ -168,15 +178,17 @@ A few more tips regarding Android devices and operating system compatibility: Google Pixel phones are the **only** devices we recommend for purchase. Pixel phones have stronger hardware security than any other Android devices currently on the market, due to proper AVB support for third-party operating systems and Google's custom [Titan](https://security.googleblog.com/2021/10/pixel-6-setting-new-standard-for-mobile.html) security chips acting as the Secure Element. -!!! recommendation +
- ![谷歌Pixel 6](assets/img/android/google-pixel.png){ align=right } - - 众所周知,**谷歌Pixel**设备具有良好的安全性,并适当支持[验证启动](https://source.android.com/security/verifiedboot),即使在安装自定义操作系统时也是如此。 - - Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. - - [:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } +![谷歌Pixel 6](assets/img/android/google-pixel.png){ align=right } + +众所周知,**谷歌Pixel**设备具有良好的安全性,并适当支持[验证启动](https://source.android.com/security/verifiedboot),即使在安装自定义操作系统时也是如此。 + +Beginning with the **Pixel 8** and **8 Pro**, Pixel devices receive a minimum of 7 years of guaranteed security updates, ensuring a much longer lifespan compared to the 2-5 years competing OEMs typically offer. + +[:material-shopping: Store](https://store.google.com/category/phones){ .md-button .md-button--primary } + +
Secure Elements like the Titan M2 are more limited than the processor's Trusted Execution Environment used by most other phones as they are only used for secrets storage, hardware attestation, and rate limiting, not for running "trusted" programs. Phones without a Secure Element have to use the TEE for *all* of those functions, resulting in a larger attack surface. @@ -198,43 +210,53 @@ We recommend a wide variety of Android apps throughout this site. The apps liste ### Shelter -!!! recommendation +
- ![Shelter logo](assets/img/android/shelter.svg){ align=right } - - * *Shelter* *是一款应用程序,可帮助您利用Android的工作配置文件功能隔离或复制设备上的应用程序。 - - Shelter支持阻止联系人跨档案搜索,并通过默认文件管理器([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui))跨档案共享文件。 - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } +![Shelter logo](assets/img/android/shelter.svg){ align=right } -!!! 推荐 +* *Shelter* *是一款应用程序,可帮助您利用Android的工作配置文件功能隔离或复制设备上的应用程序。 - 推荐使用Shelter而不是 [Insular](https://secure-system.gitlab.io/Insular/)和 [Island](https://github.com/oasisfeng/island),因为它支持[联系人搜索屏蔽](https://secure-system.gitlab.io/Insular/faq.html)。 - - 当使用Shelter时,你完全信任它的开发者,因为Shelter作为一个[设备管理员](https://developer.android.com/guide/topics/admin/device-admin)来创建工作档案,它可以广泛地访问存储在工作档案中的数据。 +Shelter支持阻止联系人跨档案搜索,并通过默认文件管理器([DocumentsUI](https://source.android.com/devices/architecture/modular-system/documentsui))跨档案共享文件。 + +[:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } +[:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.patreon.com/PeterCxy){ .card-link title=Contribute } + +
+ +
+

Warning

+ +推荐使用Shelter而不是 [Insular](https://secure-system.gitlab.io/Insular/)和 [Island](https://github.com/oasisfeng/island),因为它支持[联系人搜索屏蔽](https://secure-system.gitlab.io/Insular/faq.html)。 + +当使用Shelter时,你完全信任它的开发者,因为Shelter作为一个[设备管理员](https://developer.android.com/guide/topics/admin/device-admin)来创建工作档案,它可以广泛地访问存储在工作档案中的数据。 + +
### Secure Camera -!!! recommendation +
- ![Secure 摄像头标志](assets/img/android/secure_camera.svg#only-light){ align=right } - ![Secure 摄像头标志](assets/img/android/secure_camara-dark#only-dark){ aligh=right } - - **Secure Camera** 是一个专注于隐私和安全的相机应用,它可以捕捉图像、视频和二维码。 CameraX供应商扩展(肖像、HDR、夜视、面部修饰和自动)也在可用设备上得到支持。 - - [:octicons-repo-16: 主页](https://grapheneos.org/){ .md-button .md-button--primary } - - [:octicons-info-16:](https://github.com/GrapheneOS/Camera#privacy-policy){ .card-link title="隐私政策" } - [:octicons-code-16:](https://grapheneos.org/faq){ .card-link title=文档} - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title="源代码" } - [](){ .card-link title="贡献" } downloads "下载" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +![Secure 摄像头标志](assets/img/android/secure_camera.svg#only-light){ align=right } +![Secure 摄像头标志](assets/img/android/secure_camara-dark#only-dark){ aligh=right } + +**Secure Camera** 是一个专注于隐私和安全的相机应用,它可以捕捉图像、视频和二维码。 CameraX供应商扩展(肖像、HDR、夜视、面部修饰和自动)也在可用设备上得到支持。 + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/Camera){ .md-button .md-button--primary } +[:octicons-info-16:](https://grapheneos.org/usage#camera){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/GrapheneOS/Camera){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.camera.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/Camera/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
Main privacy features include: @@ -242,50 +264,63 @@ Main privacy features include: - Use of the new [Media](https://developer.android.com/training/data-storage/shared/media) API, therefore [storage permissions](https://developer.android.com/training/data-storage) are not required - Microphone permission not required unless you want to record sound -!!! note +
+

Note

- 目前,元数据没有从视频文件中删除,但这是计划中的。 - - 图像方向元数据未被删除。 如果你启用位置(在安全相机中),**也不会被删除。 如果你以后想删除,你将需要使用一个外部应用程序,如 [ExifEraser](data-redaction.md#exiferaser)。 +目前,元数据没有从视频文件中删除,但这是计划中的。 -### 安全的PDF查看器(Secure PDF Viewer) +图像方向元数据未被删除。 如果你启用位置(在安全相机中),**也不会被删除。 如果你以后想删除,你将需要使用一个外部应用程序,如 [ExifEraser](data-redaction.md#exiferaser)。 -!!! recommendation +
- ![安全PDF浏览器标志](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } - ![安全PDF浏览器标志](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } - - **安全PDF浏览器**是一个基于 [pdf.js](https://en.wikipedia.org/wiki/PDF.js)的PDF浏览器,不需要任何权限。 该PDF被送入一个 [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview)。 这意味着它不需要权限就能直接访问内容或文件。 - - [Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy)是用来强制要求WebView内的JavaScript和造型属性完全是静态内容。 - - [:octicons-repo-16: Repository](https://gitea.angry.im/PeterCxy/Shelter#shelter){ .md-button .md-button--primary } - [:octicons-code-16:](https://gitea.angry.im/PeterCxy/Shelter){ .card-link title="源代码" } - [:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=贡献 } - - ??? downloads "下载" - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) - - [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) - - [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) +### Secure PDF Viewer + +
+ +![安全PDF浏览器标志](assets/img/android/secure_pdf_viewer.svg#only-light){ align=right } +![安全PDF浏览器标志](assets/img/android/secure_pdf_viewer-dark.svg#only-dark){ align=right } + +**安全PDF浏览器**是一个基于 [pdf.js](https://en.wikipedia.org/wiki/PDF.js)的PDF浏览器,不需要任何权限。 该PDF被送入一个 [sandboxed](https://en.wikipedia.org/wiki/Sandbox_(software_development)) [webview](https://developer.android.com/guide/webapps/webview)。 这意味着它不需要权限就能直接访问内容或文件。 + +[Content-Security-Policy](https://en.wikipedia.org/wiki/Content_Security_Policy)是用来强制要求WebView内的JavaScript和造型属性完全是静态内容。 + +[:octicons-repo-16: Repository](https://github.com/GrapheneOS/PdfViewer){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/GrapheneOS/PdfViewer){ .card-link title="Source Code" } +[:octicons-heart-16:](https://grapheneos.org/donate){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=app.grapheneos.pdfviewer.play) +- [:simple-github: GitHub](https://github.com/GrapheneOS/PdfViewer/releases) +- [:material-cube-outline: GrapheneOS App Store](https://github.com/GrapheneOS/Apps/releases) + +
+ +
## 获取应用程序 ### Obtainium -!!! recommendation +
- ![Obtainium logo](assets/img/android/obtainium.svg){ align=right } - - **Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. - - [:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } - [:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } - [:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } - - ??? downloads - - - [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) +![Obtainium logo](assets/img/android/obtainium.svg){ align=right } + +**Obtainium** is an app manager which allows you to install and update apps directly from the developer's own releases page (i.e. GitHub, GitLab, the developer's website, etc.), rather than a centralized app store/repository. It supports automatic background updates on Android 12 and higher. + +[:octicons-repo-16: Repository](https://github.com/ImranR98/Obtainium#readme){ .md-button .md-button--primary } +[:octicons-code-16:](https://github.com/ImranR98/Obtainium){ .card-link title="Source Code" } +[:octicons-heart-16:](https://github.com/sponsors/ImranR98){ .card-link title=Contribute } + +
+Downloads + +- [:simple-github: GitHub](https://github.com/ImranR98/Obtainium/releases) + +
+ +
Obtainium allows you to download APK installer files from a wide variety of sources, and it is up to you to ensure those sources and apps are legitimate. For example, using Obtainium to install Signal from [Signal's APK landing page](https://signal.org/android/apk/) should be fine, but installing from third-party APK repositories like Aptoide or APKPure may pose additional risks. The risk of installing a malicious *update* is lower, because Android itself verifies that all app updates are signed by the same developer as the existing app on your phone before installing them. @@ -297,19 +332,24 @@ GrapheneOS's app store is available on [GitHub](https://github.com/GrapheneOS/Ap The Google Play Store requires a Google account to login which is not great for privacy. You can get around this by using an alternative client, such as Aurora Store. -!!! recommendation +
- ![Aurora Store徽标](assets/img/android/aurora-store.webp){ align=right } - - * *Aurora Store* *是Google Play Store客户端,无需Google帐户、Google Play服务或microG即可下载应用程序。 - - [:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } - [:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } - - ??? 下载 - - - [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) +![Aurora Store徽标](assets/img/android/aurora-store.webp){ align=right } + +* *Aurora Store* *是Google Play Store客户端,无需Google帐户、Google Play服务或microG即可下载应用程序。 + +[:octicons-home-16: Homepage](https://auroraoss.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://gitlab.com/AuroraOSS/AuroraStore/-/blob/master/POLICY.md){ .card-link title="Privacy Policy" } +[:octicons-code-16:](https://gitlab.com/AuroraOSS/AuroraStore){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-gitlab: GitLab](https://gitlab.com/AuroraOSS/AuroraStore/-/releases) + +
+ +
Aurora Store does not allow you to download paid apps with their anonymous account feature. You can optionally log in with your Google account with Aurora Store to download apps you have purchased, which does give access to the list of apps you've installed to Google, however you still benefit from not requiring the full Google Play client and Google Play Services or microG on your device. @@ -374,17 +414,23 @@ Other popular third-party repositories for F-Droid such as [IzzyOnDroid](https:/ That said, the [F-Droid](https://f-droid.org/en/packages/) and [IzzyOnDroid](https://apt.izzysoft.de/fdroid/) repositories are home to countless apps, so they can be a useful tool to search for and discover open-source apps that you can then download through other means such as the Play Store, Aurora Store, or by getting the APK directly from the developer. You should use your best judgement when looking for new apps via this method, and keep an eye on how frequently the app is updated. Outdated apps may rely on unsupported libraries, among other things, posing a potential security risk. -!!! note "F-Droid Basic" +
+

F-Droid Basic

- In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). +In some rare cases, the developer of an app will only distribute it through F-Droid ([Gadgetbridge](https://gadgetbridge.org/) is one example of this). If you really need an app like that, we recommend using the newer [F-Droid Basic](https://f-droid.org/en/packages/org.fdroid.basic/) client instead of the original F-Droid app to obtain it. F-Droid Basic can do unattended updates without privileged extension or root, and has a reduced feature set (limiting attack surface). + +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### 服务供应商 diff --git a/i18n/zh/calendar.md b/i18n/zh/calendar.md index 11acb907..90389dd8 100644 --- a/i18n/zh/calendar.md +++ b/i18n/zh/calendar.md @@ -9,48 +9,58 @@ cover: calendar.webp ## Tuta -!!! recommendation +
- ![Tuta logo](assets/img/calendar/tuta.svg){ align=right } - - **Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). - - 多个日历和扩展的共享功能仅限于付费用户。 - - [:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } - [:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } - [:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) - - [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) - - [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) - - [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) - - [:octicons-browser-16: Web](https://app.tuta.com/) +![Tuta logo](assets/img/calendar/tuta.svg){ align=right } + +**Tuta** offers a free and encrypted calendar across their supported platforms. Features include: automatic E2EE of all data, sharing features, import/export functionality, multi-factor authentication, and [more](https://tuta.com/calendar-app-comparison/). + +多个日历和扩展的共享功能仅限于付费用户。 + +[:octicons-home-16: Homepage](https://tuta.com/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://tuta.com/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://tuta.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/tutao/tutanota){ .card-link title="Source Code" } +[:octicons-heart-16:](https://tuta.com/community/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=de.tutao.tutanota) +- [:simple-appstore: App Store](https://apps.apple.com/us/app/tutanota/id922429609) +- [:simple-windows11: Windows](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-apple: macOS](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-linux: Linux](https://tuta.com/blog/posts/desktop-clients/) +- [:simple-flathub: Flathub](https://flathub.org/apps/com.tutanota.Tutanota) +- [:octicons-browser-16: Web](https://app.tuta.com/) + +
+ +
## Proton Calendar(Proton 日历) -!!! recommendation +
- ![Proton](aassets/img/calendar/proton-calendar.svg)}=right } - - **Proton Calendar** 是一个通过网络或移动客户提供给Proton成员的加密日历服务。 功能包括:所有数据的自动E2EE,共享功能,导入/导出功能,多因素认证,以及 [more](https://proton.me/support/proton-calendar-guide/)。 Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. 扩展的分享功能也仅限于付费用户。 - - [:octicons-home-16: 主页](https://grapheneos.org/){ .md-button .md-button--primary } - - [:octicons-eye-16:](https://proton.me/support/proton-calendar-guide#privacy-policy){ .card-link title="隐私政策" } - [:octicons-info-16:](https://grapheneos.org/faq){ .card-link title=文档} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="源代码" } - [](){ .card-link title="贡献" } downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) - - [:octicons-browser-16: Web](https://calendar.proton.me) +![Proton](aassets/img/calendar/proton-calendar.svg)}=right } + +**Proton Calendar** 是一个通过网络或移动客户提供给Proton成员的加密日历服务。 功能包括:所有数据的自动E2EE,共享功能,导入/导出功能,多因素认证,以及 [more](https://proton.me/support/proton-calendar-guide/)。 Those on the free tier get access to 3 calendars, whereas paid subscribers can create up to 25 calendars. 扩展的分享功能也仅限于付费用户。 + +[:octicons-home-16: Homepage](https://proton.me/calendar){ .md-button .md-button--primary } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/proton-calendar-guide){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.calendar) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id1514709943) +- [:octicons-browser-16: Web](https://calendar.proton.me) + +
+ +
Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguides.net/t/proton-calendar-is-not-open-source-mobile/14656/8) not released the source code for their mobile Calendar app on Android or iOS. Proton Calendar's web client is open source. @@ -58,9 +68,12 @@ Unfortunately, as of January 2024 Proton has [still](https://discuss.privacyguid **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/zh/cloud.md b/i18n/zh/cloud.md index 6b7baa83..6930c486 100644 --- a/i18n/zh/cloud.md +++ b/i18n/zh/cloud.md @@ -10,29 +10,37 @@ cover: cloud.webp If these alternatives do not fit your needs, we suggest you look into using encryption software like [Cryptomator](encryption.md#cryptomator-cloud) with another cloud provider. Using Cryptomator in conjunction with **any** cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients. -??? 问题 "寻找Nextcloud?" +
+Looking for Nextcloud? - Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. +Nextcloud is [still a recommended tool](productivity.md) for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do [not recommend](https://discuss.privacyguides.net/t/dont-recommend-nextcloud-e2ee/10352/29) Nextcloud's built-in E2EE functionality for home users. + +
## Proton Drive(Proton 云盘) -!!! recommendation +
- ![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } - - **Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). - - [:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) - - [:simple-windows11: Windows](https://proton.me/drive/download) - - [:simple-apple: macOS](https://proton.me/drive/download) +![Proton Drive logo](assets/img/cloud/protondrive.svg){ align=right } + +**Proton Drive** is a Swiss encrypted cloud storage provider from the popular encrypted email provider [Proton Mail](email.md#proton-mail). + +[:octicons-home-16: Homepage](https://proton.me/drive){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://proton.me/legal/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://proton.me/support/drive){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/ProtonMail/WebClients){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=me.proton.android.drive) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1509667851) +- [:simple-windows11: Windows](https://proton.me/drive/download) +- [:simple-apple: macOS](https://proton.me/drive/download) + +
+ +
The Proton Drive web application has been independently audited by Securitum in [2021](https://proton.me/blog/security-audit-all-proton-apps), full details were not made available, but Securitum's letter of attestation states: @@ -42,23 +50,28 @@ Proton Drive's brand new mobile clients have not yet been publicly audited by a ## Tresorit -!!! recommendation +
- ![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } - - **Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. - - [:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } - [:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) - - [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) - - [:simple-windows11: Windows](https://tresorit.com/download) - - [:simple-apple: macOS](https://tresorit.com/download) - - [:simple-linux: Linux](https://tresorit.com/download) +![Tresorit logo](assets/img/cloud/tresorit.svg){ align=right } + +**Tresorit** is a Swiss-Hungarian encrypted cloud storage provider founded in 2011. Tresorit is owned by the Swiss Post, the national postal service of Switzerland. + +[:octicons-home-16: Homepage](https://tresorit.com/){ class="md-button md-button--primary" } +[:octicons-eye-16:](https://tresorit.com/legal/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.tresorit.com/hc/en-us){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.tresorit.mobile) +- [:simple-appstore: App Store](https://apps.apple.com/app/apple-store/id722163232) +- [:simple-windows11: Windows](https://tresorit.com/download) +- [:simple-apple: macOS](https://tresorit.com/download) +- [:simple-linux: Linux](https://tresorit.com/download) + +
+ +
Tresorit has received a number of independent security audits: @@ -76,9 +89,12 @@ They have also received the Digital Trust Label, a certification from the [Swiss **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Requirements diff --git a/i18n/zh/email-clients.md b/i18n/zh/email-clients.md index d1063432..3101ad70 100644 --- a/i18n/zh/email-clients.md +++ b/i18n/zh/email-clients.md @@ -7,35 +7,43 @@ cover: email-clients.webp Our recommendation list contains email clients that support both [OpenPGP](encryption.md#openpgp) and strong authentication such as [Open Authorization (OAuth)](https://en.wikipedia.org/wiki/OAuth). OAuth allows you to use [Multi-Factor Authentication](basics/multi-factor-authentication.md) and prevent account theft. -??? warning "Email does not provide forward secrecy" +
+Email does not provide forward secrecy - When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. - - OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: - - [Real-time Communication](real-time-communication.md){ .md-button } +When using end-to-end encryption (E2EE) technology like OpenPGP, email will still have [some metadata](email.md#email-metadata-overview) that is not encrypted in the header of the email. + +OpenPGP also does not support [forward secrecy](https://en.wikipedia.org/wiki/Forward_secrecy), which means if either your or the recipient's private key is ever stolen, all previous messages encrypted with it will be exposed: [How do I protect my private keys?](basics/email-security.md) Consider using a medium that provides forward secrecy: + +[Real-time Communication](real-time-communication.md ""){.md-button} + +
## Cross-Platform ### Thunderbird -!!! recommendation +
- ![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } - - **Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. - - [:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} - [:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-windows11: Windows](https://www.thunderbird.net) - - [:simple-apple: macOS](https://www.thunderbird.net) - - [:simple-linux: Linux](https://www.thunderbird.net) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) +![Thunderbird logo](assets/img/email-clients/thunderbird.svg){ align=right } + +**Thunderbird** is a free, open-source, cross-platform email, newsgroup, news feed, and chat (XMPP, IRC, Twitter) client developed by the Thunderbird community, and previously by the Mozilla Foundation. + +[:octicons-home-16: Homepage](https://www.thunderbird.net){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mozilla.org/privacy/thunderbird){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mozilla.org/products/thunderbird){ .card-link title=Documentation} +[:octicons-code-16:](https://hg.mozilla.org/comm-central){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-windows11: Windows](https://www.thunderbird.net) +- [:simple-apple: macOS](https://www.thunderbird.net) +- [:simple-linux: Linux](https://www.thunderbird.net) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.mozilla.Thunderbird) + +
+ +
#### 推荐配置 @@ -60,169 +68,217 @@ We recommend changing some of these settings to make Thunderbird a little more p ### Apple Mail (macOS) -!!! recommendation +
- ![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } - - **Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. - - [:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} +![Apple Mail logo](assets/img/email-clients/applemail.png){ align=right } + +**Apple Mail** is included in macOS and can be extended to have OpenPGP support with [GPG Suite](encryption.md#gpg-suite), which adds the ability to send PGP-encrypted email. + +[:octicons-home-16: Homepage](https://support.apple.com/guide/mail/welcome/mac){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.apple.com/legal/privacy/en-ww/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.apple.com/mail){ .card-link title=Documentation} + + + +
Apple Mail has the ability to load remote content in the background or block it entirely and hide your IP address from senders on [macOS](https://support.apple.com/guide/mail/mlhl03be2866/mac) and [iOS](https://support.apple.com/guide/iphone/iphf084865c7/ios). ### Canary Mail (iOS) -!!! recommendation +
- ![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } - - **Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - - [:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } - [:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) - - [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) - - [:simple-windows11: Windows](https://canarymail.io/downloads.html) +![Canary Mail logo](assets/img/email-clients/canarymail.svg){ align=right } -!!! 推荐 +**Canary Mail** is a paid email client designed to make end-to-end encryption seamless with security features such as a biometric app lock. - Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. +[:octicons-home-16: Homepage](https://canarymail.io){ .md-button .md-button--primary } +[:octicons-eye-16:](https://canarymail.io/privacy.html){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://canarymail.zendesk.com/){ .card-link title=Documentation} + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=io.canarymail.android) +- [:simple-appstore: App Store](https://apps.apple.com/app/id1236045954) +- [:simple-windows11: Windows](https://canarymail.io/downloads.html) + +
+ +
+ +
+Warning + +Canary Mail only recently released a Windows and Android client, though we don't believe they are as stable as their iOS and Mac counterparts. + +
Canary Mail is closed-source. We recommend it due to the few choices there are for email clients on iOS that support PGP E2EE. ### FairEmail (Android) -!!! recommendation +
- ![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } - - **FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. - - [:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } - [:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) - - [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) +![FairEmail logo](assets/img/email-clients/fairemail.svg){ align=right } + +**FairEmail** is a minimal, open-source email app, using open standards (IMAP, SMTP, OpenPGP) with a low data and battery usage. + +[:octicons-home-16: Homepage](https://email.faircode.eu){ .md-button .md-button--primary } +[:octicons-eye-16:](https://github.com/M66B/FairEmail/blob/master/PRIVACY.md){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://github.com/M66B/FairEmail/blob/master/FAQ.md){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/M66B/FairEmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://email.faircode.eu/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=eu.faircode.email) +- [:simple-github: GitHub](https://github.com/M66B/FairEmail/releases) + +
+ +
### GNOME Evolution (GNOME) -!!! recommendation +
- ![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } - - **Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. - - [:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } - [:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} - [:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) +![Evolution logo](assets/img/email-clients/evolution.svg){ align=right } + +**Evolution** is a personal information management application that provides integrated mail, calendaring and address book functionality. Evolution has extensive [documentation](https://help.gnome.org/users/evolution/stable/) to help you get started. + +[:octicons-home-16: Homepage](https://wiki.gnome.org/Apps/Evolution){ .md-button .md-button--primary } +[:octicons-eye-16:](https://wiki.gnome.org/Apps/Evolution/PrivacyPolicy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://help.gnome.org/users/evolution/stable/){ .card-link title=Documentation} +[:octicons-code-16:](https://gitlab.gnome.org/GNOME/evolution/){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.gnome.org/donate/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.gnome.Evolution) + +
+ +
### K-9 Mail (Android) -!!! recommendation +
- ![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } - - **K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - - In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. - - [:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } - [:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } - [:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } - - ??? downloads - - - [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) - - [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) +![K-9 Mail logo](assets/img/email-clients/k9mail.svg){ align=right } -!!! 推荐 +**K-9 Mail** is an independent mail application that supports both POP3 and IMAP mailboxes, but only supports push mail for IMAP. - When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). +In the future, K-9 Mail will be the [officially branded](https://k9mail.app/2022/06/13/K-9-Mail-and-Thunderbird.html) Thunderbird client for Android. + +[:octicons-home-16: Homepage](https://k9mail.app){ .md-button .md-button--primary } +[:octicons-eye-16:](https://k9mail.app/privacy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://docs.k9mail.app/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/thundernest/k-9){ .card-link title="Source Code" } +[:octicons-heart-16:](https://k9mail.app/contribute){ .card-link title=Contribute } + +
+Downloads + +- [:simple-googleplay: Google Play](https://play.google.com/store/apps/details?id=com.fsck.k9) +- [:simple-github: GitHub](https://github.com/thundernest/k-9/releases) + +
+ +
+ +
+

Warning

+ +When replying to someone on a mailing list the "reply" option may also include the mailing list. For more information see [thundernest/k-9 #3738](https://github.com/thundernest/k-9/issues/3738). + +
### Kontact (KDE) -!!! recommendation +
- ![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } - - **Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. - - [:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } - [:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} - [:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } - [:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-linux: Linux](https://kontact.kde.org/download) - - [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) +![Kontact logo](assets/img/email-clients/kontact.svg){ align=right } + +**Kontact** is a personal information manager (PIM) application from the [KDE](https://kde.org) project. It provides a mail client, address book, organizer and RSS client. + +[:octicons-home-16: Homepage](https://kontact.kde.org){ .md-button .md-button--primary } +[:octicons-eye-16:](https://kde.org/privacypolicy-apps){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://kontact.kde.org/users/){ .card-link title=Documentation} +[:octicons-code-16:](https://invent.kde.org/pim/kmail){ .card-link title="Source Code" } +[:octicons-heart-16:](https://kde.org/community/donations/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-linux: Linux](https://kontact.kde.org/download) +- [:simple-flathub: Flathub](https://flathub.org/apps/details/org.kde.kontact) + +
+ +
### Mailvelope (Browser) -!!! recommendation +
- ![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } - - **Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. - - [:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } - - ??? downloads - - - [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) - - [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) - - [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) +![Mailvelope logo](assets/img/email-clients/mailvelope.svg){ align=right } + +**Mailvelope** is a browser extension that enables the exchange of encrypted emails following the OpenPGP encryption standard. + +[:octicons-home-16: Homepage](https://www.mailvelope.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://www.mailvelope.com/en/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://mailvelope.com/faq){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/mailvelope/mailvelope){ .card-link title="Source Code" } + +
+Downloads + +- [:simple-firefoxbrowser: Firefox](https://addons.mozilla.org/firefox/addon/mailvelope) +- [:simple-googlechrome: Chrome](https://chrome.google.com/webstore/detail/mailvelope/kajibbejlbohfaggdiogboambcijhkke) +- [:simple-microsoftedge: Edge](https://microsoftedge.microsoft.com/addons/detail/mailvelope/dgcbddhdhjppfdfjpciagmmibadmoapc) + +
+ +
### NeoMutt (CLI) -!!! recommendation +
- ![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } - - **NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. - - NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. - - [:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } - - ??? downloads - - - [:simple-apple: macOS](https://neomutt.org/distro) - - [:simple-linux: Linux](https://neomutt.org/distro) +![NeoMutt logo](assets/img/email-clients/mutt.svg){ align=right } + +**NeoMutt** is an open-source command line mail reader (or MUA) for Linux and BSD. It's a fork of [Mutt](https://en.wikipedia.org/wiki/Mutt_(email_client)) with added features. + +NeoMutt is a text-based client that has a steep learning curve. It is however, very customizable. + +[:octicons-home-16: Homepage](https://neomutt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://neomutt.org/guide/){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/neomutt/neomutt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://www.paypal.com/paypalme/russon/){ .card-link title=Contribute } + +
+Downloads + +- [:simple-apple: macOS](https://neomutt.org/distro) +- [:simple-linux: Linux](https://neomutt.org/distro) + +
+ +
## Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
### Minimum Qualifications diff --git a/i18n/zh/financial-services.md b/i18n/zh/financial-services.md index 6cedefcb..60641cd0 100644 --- a/i18n/zh/financial-services.md +++ b/i18n/zh/financial-services.md @@ -12,37 +12,48 @@ Making payments online is one of the biggest challenges to privacy. These servic There are a number of services which provide "virtual debit cards" which you can use with online merchants without revealing your actual banking or billing information in most cases. It's important to note that these financial services are **not** anonymous and are subject to "Know Your Customer" (KYC) laws and may require your ID or other identifying information. These services are primarily useful for protecting you from merchant data breaches, less sophisticated tracking or purchase correlation by marketing agencies, and online data theft; and **not** for making a purchase completely anonymously. -!!! tip "Check your current bank" +
+

Check your current bank

- Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. +Many banks and credit card providers offer native virtual card functionality. If you use one which provides this option already, you should use it over the following recommendations in most cases. That way you are not trusting multiple parties with your personal information. + +
### Privacy.com (US) -!!! recommendation +
- ![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } - ![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } - - **Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. - - [:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } - [:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} +![Privacy.com logo](assets/img/financial-services/privacy_com.svg#only-light){ align=right } +![Privacy.com logo](assets/img/financial-services/privacy_com-dark.svg#only-dark){ align=right } + +**Privacy.com**'s free plan allows you to create up to 12 virtual cards per month, set spend limits on those cards, and shut off cards instantly. Their paid plan allows you to create up to 36 cards per month, get 1% cash back on purchases, and hide transaction information from your bank. + +[:octicons-home-16: Homepage](https://privacy.com){ .md-button .md-button--primary } +[:octicons-eye-16:](https://privacy.com/privacy-policy){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.privacy.com/hc/en-us){ .card-link title=Documentation} + + + +
Privacy.com gives information about the merchants you purchase from to your bank by default. Their paid "discreet merchants" feature hides merchant information from your bank, so your bank only sees that a purchase was made with Privacy.com but not where that money was spent, however that is not foolproof, and of course Privacy.com still has knowledge about the merchants you are spending money with. ### MySudo (US, Paid) -!!! recommendation +
- ![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } - ![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } - - **MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. - - [:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} +![MySudo logo](assets/img/financial-services/mysudo.svg#only-light){ align=right } +![MySudo logo](assets/img/financial-services/mysudo-dark.svg#only-dark){ align=right } + +**MySudo** provides up to 9 virtual cards depending on the plan you purchase. Their paid plans additionally include functionality which may be useful for making purchases privately, such as virtual phone numbers and email addresses, although we typically recommend other [email aliasing providers](email.md) for extensive email aliasing use. + +[:octicons-home-16: Homepage](https://mysudo.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://anonyome.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://support.mysudo.com/hc/en-us){ .card-link title=Documentation} + + + +
MySudo's virtual cards are currently only available via their iOS app. @@ -50,9 +61,12 @@ MySudo's virtual cards are currently only available via their iOS app. **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Allows the creation of multiple cards which function as a shield between the merchant and your personal finances. - Cards must not require you to provide accurate billing address information to the merchant. @@ -63,23 +77,30 @@ These services allow you to purchase gift cards for a variety of merchants onlin ### CoinCards -!!! recommendation +
- ![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } - - **CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. - - [:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } - [:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } - [:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} +![CoinCards logo](assets/img/financial-services/coincards.svg){ align=right } + +**CoinCards** (available in the US and Canada) allows you to purchase gift cards for a large variety of merchants. + +[:octicons-home-16: Homepage](https://coincards.com/){ .md-button .md-button--primary } +[:octicons-eye-16:](https://coincards.com/privacy-policy/){ .card-link title="Privacy Policy" } +[:octicons-info-16:](https://coincards.com/frequently-asked-questions/){ .card-link title=Documentation} + + + +
### Criteria **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Accepts payment in [a recommended cryptocurrency](cryptocurrency.md). - No ID requirement. diff --git a/i18n/zh/router.md b/i18n/zh/router.md index a2177a45..e583ed58 100644 --- a/i18n/zh/router.md +++ b/i18n/zh/router.md @@ -9,32 +9,40 @@ Below are a few alternative operating systems, that can be used on routers, Wi-F ## OpenWrt -!!! recommendation +
- ![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } - ![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } - - **OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. - - [:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } - [:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } - [:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } +![OpenWrt logo](assets/img/router/openwrt.svg#only-light){ align=right } +![OpenWrt logo](assets/img/router/openwrt-dark.svg#only-dark){ align=right } + +**OpenWrt** is a Linux-based operating system; it's primarily used on embedded devices to route network traffic. It includes util-linux, uClibc, and BusyBox. All of the components have been optimized for home routers. + +[:octicons-home-16: Homepage](https://openwrt.org){ .md-button .md-button--primary } +[:octicons-info-16:](https://openwrt.org/docs/start){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/openwrt/openwrt){ .card-link title="Source Code" } +[:octicons-heart-16:](https://openwrt.org/donate){ .card-link title=Contribute } + + + +
You can consult OpenWrt's [table of hardware](https://openwrt.org/toh/start) to check if your device is supported. ## OPNsense -!!! recommendation +
- ![OPNsense logo](assets/img/router/opnsense.svg){ align=right } - - **OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. - - [:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } - [:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} - [:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } - [:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } +![OPNsense logo](assets/img/router/opnsense.svg){ align=right } + +**OPNsense** is an open-source, FreeBSD-based firewall and routing platform which incorporates many advanced features such as traffic shaping, load balancing, and VPN capabilities, with many more features available in the form of plugins. OPNsense is commonly deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server, and VPN endpoint. + +[:octicons-home-16: Homepage](https://opnsense.org/){ .md-button .md-button--primary } +[:octicons-info-16:](https://docs.opnsense.org/index.html){ .card-link title=Documentation} +[:octicons-code-16:](https://github.com/opnsense){ .card-link title="Source Code" } +[:octicons-heart-16:](https://opnsense.org/donate/){ .card-link title=Contribute } + + + +
OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.org/wiki/PfSense), and both projects are noted for being free and reliable firewall distributions which offer features often only found in expensive commercial firewalls. Launched in 2015, the developers of OPNsense [cited](https://docs.opnsense.org/history/thefork.html) a number of security and code-quality issues with pfSense which they felt necessitated a fork of the project, as well as concerns about Netgate's majority acquisition of pfSense and the future direction of the pfSense project. @@ -42,9 +50,12 @@ OPNsense was originally developed as a fork of [pfSense](https://en.wikipedia.or **Please note we are not affiliated with any of the projects we recommend.** In addition to [our standard criteria](about/criteria.md), we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you. -!!! example "This section is new" +
+

This section is new

- We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. +We are working on establishing defined criteria for every section of our site, and this may be subject to change. If you have any questions about our criteria, please [ask on our forum](https://discuss.privacyguides.net/latest) and don't assume we didn't consider something when making our recommendations if it is not listed here. There are many factors considered and discussed when we recommend a project, and documenting every single one is a work-in-progress. + +
- Must be open source. - Must receive regular updates.