Not here. You can use something like this or this solutions. Root really can make your security more weak.
Personally I setup that hosts file on my Mudi router, so I don’t need to modify system partition via root.
Also if someone runs Adguard home on Mudi (as plugin) or similar router I strongly recommend to install this blocklist that will block phishing (info about it).
I blocked fully Meta, Google, Twitter and Microsoft servers (domains and IPs). Also I blocked some crap similar to booking[dot]com.
This also blocked via Adguard Home on my Mudi and by adblock extension in my browser.
I wonder how anything that uses GCP or Azure works then, or are you okay with half the internet not working. In any case there’s still plenty of smaller companies that are not household names, that nobody really talks about.
I never connect to anything without Mudi. Firstly, I simply can use free Proton VPN plan to have VPN on many devices, secondly Mudi has some software that spoof my IMEI and MAC which will make me more anonymous.
Luckily, only few websites. As I see most websites working fine. Only reCAPTCHA not loading
Unless you’re regularly changing the SIM and buying that also in a way that doesn’t lead back to you, I can’t really see that doing a lot. The SIM still has an ICCID that can’t be changed.
It’s also not really gaining much anyway, as it’s not like the service provider can penetrate anything in the application layer or higher. If you used the Tor Browser they wouldn’t know much more/or less other than you’re using an internet connection to push some encrypted data.
By default IMEI in blue merle plugin switches only if SIM changes. I don’t need this type of configuration to even swap SIMs. This feature necessary to prevent another provider from registering me in logs if I am travelling for example.
The main purpose of my Mudi is have VPN even on those devices that can’t have VPN setup on them (for example smart watch etc) and control traffic via firewall to reject everything that I don’t need now. For example block port 80 to force everything work only via HTTPS (it can be troublesome but I did not get much problems because of it)
I know. But I don’t want my ISP or even government know that I am using Tor. So OBFS4 moat + VPN on router to prevent DPI find out that that is Tor connection.
That’s fair I suppose, but they wouldn’t need to track you via IMEI when they can just track by the SIM. Unless you’re also going to the expense/extent of anonymously purchasing the SIM cards.
Fair usecase.
That I suppose is a good idea, depending on where you are.
I recommend you not to use Signal. Maybe it will sound mad but it requires phone number. Telegram support anonymous number (only ans login, it is not real number) and usage only username.
About Signal. As I read, you are using router that supports SMS receive/forward so for you Signal probably will not be a problem. But keep in mind that it requires phone number and using Amazon services wich will probably make you less private (IP revealing to not really private corporation)
Also, there is an incident with Twilio that affected Signal. Twilio also owns Authy which has a lot of privacy issues.
Instead use Wire (Signal protocol, but registration via Email) or Telegram via anonymous phone number (keep in mind that you must not send anything private in Telegram unless you’re using secret chat)
I genuinely don’t understand the snowden larpers who recommend Telegram. it screams of a confused and nonsensical threat model if it exists.
This may be harsh but if anyone criticises Signal solely on the phone number req, but says zero about metadata (which most other messengers are worse on), they’re just spreading bs – like, telegram doesn’t even have e2ee across all chats, let alone protecting metadata in any way like sealed sender is designed to do. Even a matrix chat would be better at that point (just kidding, state resets exist lol)
Do you have Termux installed? If so, look into proot-distro and set up a proot linux desktop within Termux. I did write a basic bash script some time ago that automates a proot debian XFCE install with libre office, vscode, firefox, and other utils. I think I posted it to r/termux. Anyway, proot-distro isnt that difficult.