🆕 Software Suggestion | Latest Privacy #2149

New Issue

2020-12-08T16:53:11Z

LukeSeers commented

2020-12-08 16:53:11 +00:00

(Migrated from github.com)

Basic Information

Name: Latest Privacy
Category: News / Resources
URL: https://latestprivacy.org or lp5c4ebkb34ogij3vqxuars6iqnfvierojhmnzcodnzpwc4pjo6wb4ad.onion

Description

Keeping track of privacy is no easy task, Latest Privacy tries to solve that issue by having a human curated news feed with well respected and trust sources. By making privacy easier to follow, it will help those who want to protect their rights and help teaching people that privacy is not just important, it is a basic human right.

Note Primarily the website is only focused for the UK. We do plan on supporting other English speaking countries too, but we are a small team with full time jobs and having such a task can take up a large amount of time.

Why I am making the suggestion

A few years ago I wanted to keep track of privacy, but it's such a huge task. Everyday I would end up going to around 10 websites, checking to see if there was any important privacy news I should know about. There are RSS and Inoreader etc, but you start to subscribe to multiple places, which in result you end up with having to go through around 100+ articles a day and 90% of them are nothing really important.

This is where I thought about starting a project called Latest Privacy to try and solve this problem for other people too. The project started with just me and now there are 6 of us. If it was not for everybody who contributed to this project Latest Privacy would still be just a idea in the back of my head.

My connection with the software

I'm apart of the team.

I will keep the issue up-to-date if something I have said changes or I remember a connection with the software.

## Basic Information **Name:** Latest Privacy **Category:** News / Resources **URL:** https://latestprivacy.org or lp5c4ebkb34ogij3vqxuars6iqnfvierojhmnzcodnzpwc4pjo6wb4ad.onion ## Description Keeping track of privacy is no easy task, Latest Privacy tries to solve that issue by having a human curated news feed with well respected and trust sources. By making privacy easier to follow, it will help those who want to protect their rights and help teaching people that privacy is not just important, it is a basic human right. **Note** Primarily the website is only focused for the UK. We do plan on supporting other English speaking countries too, but we are a small team with full time jobs and having such a task can take up a large amount of time. ## Why I am making the suggestion A few years ago I wanted to keep track of privacy, but it's such a huge task. Everyday I would end up going to around 10 websites, checking to see if there was any important privacy news I should know about. There are RSS and Inoreader etc, but you start to subscribe to multiple places, which in result you end up with having to go through around 100+ articles a day and 90% of them are nothing really important. This is where I thought about starting a project called **Latest Privacy** to try and solve this problem for other people too. The project started with just me and now there are 6 of us. If it was not for everybody who contributed to this project Latest Privacy would still be just a idea in the back of my head. ## My connection with the software I'm apart of the team. - [x] I will keep the issue up-to-date if something I have said changes or I remember a connection with the software.

👎 1 👀 1

ph00lt0 commented

2020-12-08 17:34:38 +00:00

(Migrated from github.com)

Some feedback:

Please remove Cloudflare CDN
Your onion service connects back to the main domain for GET | https://latestprivacy.org/api/jobs
interesting project!

Some feedback: - Please remove Cloudflare CDN - Your onion service connects back to the main domain for GET | https://latestprivacy.org/api/jobs - interesting project!

LukeSeers commented

2020-12-08 18:04:35 +00:00

(Migrated from github.com)

Thanks for your feedback we appreciate it!

Please remove Cloudflare CDN

Do you have any suggestions?

We use them to make sure the website is fast as possible, because a lot of people who are not in the privacy realm tend to leave the website if it takes to long to load and then that is possibly a miss opportunity.

Personally I don't like the fact that Cloudflare controls the internet, if they go down everybody else down with them. That was one of the reasons (and many other reasons) for us to also use tor so people can choose which they prefer.

Your onion service connects back to the main domain for GET | https://latestprivacy.org/api/jobs

Great catch! we will fix that ASAP. Thank you!

Thanks for your feedback we appreciate it! > Please remove Cloudflare CDN Do you have any suggestions? We use them to make sure the website is fast as possible, because a lot of people who are not in the privacy realm tend to leave the website if it takes to long to load and then that is possibly a miss opportunity. Personally I don't like the fact that Cloudflare controls the internet, if they go down everybody else down with them. That was one of the reasons _(and many other reasons)_ for us to also use tor so people can choose which they prefer. > Your onion service connects back to the main domain for GET | https://latestprivacy.org/api/jobs Great catch! we will fix that ASAP. Thank you!

ph00lt0 commented

2020-12-08 18:30:28 +00:00

(Migrated from github.com)

Although not an one-on-one replacement: loadbalancers.
Personally I doubt that Cloudflare makes your website so much faster, if it does at all. Most free CDNs are not faster then a normal VPS and come with the big cost of data mining.

Although not an one-on-one replacement: loadbalancers. Personally I doubt that Cloudflare makes your website so much faster, if it does at all. Most free CDNs are not faster then a normal VPS and come with the big cost of data mining.

lynn-stephenson commented

2020-12-09 00:11:14 +00:00

(Migrated from github.com)

Although not an one-on-one replacement: loadbalancers.
Personally I doubt that Cloudflare makes your website so much faster, if it does at all. Most free CDNs are not faster then a normal VPS and come with the big cost of data mining.

As someone who runs a VPS, serving all of these files can eat up CPU & RAM, especially when you take TLS connections into consideration.

Without proper configuration of your personal CDN you will be making your load times far slower, especially on cheaper hardware.

Another thing to take into consideration is the cost of bandwidth. Not all Virtual Private Servers come with unlimited bandwidth.

> Although not an one-on-one replacement: loadbalancers. > Personally I doubt that Cloudflare makes your website so much faster, if it does at all. Most free CDNs are not faster then a normal VPS and come with the big cost of data mining. As someone who runs a VPS, serving all of these files can eat up CPU & RAM, especially when you take TLS connections into consideration. Without proper configuration of your personal CDN you will be making your load times far slower, especially on cheaper hardware. Another thing to take into consideration is the cost of bandwidth. Not all Virtual Private Servers come with unlimited bandwidth.

lynn-stephenson commented

2020-12-09 00:12:39 +00:00

(Migrated from github.com)

For external resources you can implement Subresource Integrity to ensure the files are not tampered with.

8BallBomBom commented

2020-12-09 06:44:57 +00:00

(Migrated from github.com)

Your onion service connects back to the main domain for GET | https://latestprivacy.org/api/jobs

Thanks for the heads up, all fixed 👍🏻

> * Your onion service connects back to the main domain for GET | https://latestprivacy.org/api/jobs Thanks for the heads up, all fixed 👍🏻

freddy-m commented

2020-12-10 12:02:45 +00:00

(Migrated from github.com)

I saw this project a while back and thought it looked interesting! I'm glad you're listening to feedback, and I'm in favour of adding this to the site. Thoughts @privacytools/editorial ?

jamesponddotco commented

2020-12-10 15:49:33 +00:00

(Migrated from github.com)

Do you have any suggestions?

When researching what CDN back-end I would offer to customers at a hosting company, BunnyCDN came out on top as far as privacy is concerned. They offer IP anonymization or the ability to disable logging all together, the ability to disable cookies for the CDN subdomain, and a bunch of other privacy and security features. They are also located in an okay jurisdiction, Slovenia.

You should still implement SRI, as @lynn-stephenson mentioned, though.

> Do you have any suggestions? When researching what CDN back-end I would offer to customers at a hosting company, [BunnyCDN](https://bunnycdn.com/) came out on top as far as privacy is concerned. They offer IP anonymization or the ability to disable logging all together, the ability to disable cookies for the CDN subdomain, and a bunch of other privacy and security features. They are also located in an okay jurisdiction, Slovenia. You should still implement SRI, as @lynn-stephenson mentioned, though.

8BallBomBom commented

2020-12-31 19:18:40 +00:00

(Migrated from github.com)

You should still implement SRI, as @lynn-stephenson mentioned, though.

We did some research regarding SRI and came to the conclusion that it might not be worth the headache at this point in time. There seems to be random issues where if your browser/proxy or anything after the CDN messes with the content as in compresses/minifies things then the site won't load correctly due to integrity failures, more info about that here and here.

That being said, it is something we might implement at some point in the future.

> You should still implement SRI, as @lynn-stephenson mentioned, though. We did some research regarding SRI and came to the conclusion that it might not be worth the headache at this point in time. There seems to be random issues where if your browser/proxy or anything after the CDN messes with the content as in compresses/minifies things then the site won't load correctly due to integrity failures, more info about that [here](https://github.com/facebook/create-react-app/issues/7006) and [here](https://github.com/facebook/create-react-app/issues/1231). That being said, it is something we might implement at some point in the future.

👍 1

This repo is archived. You cannot comment on issues.