• No good operating system preinstalled by default
• No headphone jack anymore

I’m barely still a Millenial. Which is kind of cool. I don’t like the “generation names” before or after that much, and I liked that I grew up with non-invasive tech and non-existent smartphones during school. I was able to grow up with tech but none of the tech I dislike today. Also, tech was still easier to understand back then. I was able to learn how to create web sites for example when HTML, CSS, JavaScript and CGI was still in its infancy and not very complex yet. Of course I learned the growing complexitty as it all developed but the point is that it kind of grew with me. Which probably made several things easier to get into in the first place. Also, I still grew up with almost forgotten values such as privacy, and my whole youth life (as well as dumb things you did when young) isn’t available online and therefore “gone”. I kind of like it that way.

Answer is correct, I just want to clarify a bit more:

“Password protected” in your case probably just means that you have a bootloader password or a user account password. Both would not matter in this case. If you put your drive or partition anywhere else, and it’s not an encrypted partition, it can be read. Independently of user access rights. Any other OS accessing the same drive/partition can literally read everything if it’s not encrypted. Provided, of course, that there’s a file system driver available for the OS.

Windows by default doesn’t have any Linux filesystem driver installed. I’m not sure if that’s still the case when you install WSL. And there are 3rd party Linux filesystem drivers available as well.

But to protect yourself against robbery or a Windows which might in the future include a Linux filesystem driver, you should always encrypt all of your partitions. And when encrypting, use Bitlocker only for your Windows system partition, not for any data partitions, and certainly not for Linux partitions. For Linux partitons, use the integrated LUKS2. Bitlocker on Windows isn’t private encryption by the way, since a recovery key is being uploaded to MS’ servers automatically. That means MS has theoretical access, the US government has, and law enforcement has. As well as any hackers who manage to exfiltrate that key from somewhere. That’s why I’d use Bitlocker only for the C: partition, a 3rd party encryption tool like VeraCrypt for any other Windows partition, and LUKS2 for any Linux partiton.

AFAIK, browser choice is still limited (as usual with Apple) because every browser on iOS needs to use Apple’s WebKit engine. That means they only differ in UI.

Of course they do. It’s to be expected that big tech companies use all data they can gather for training AIs, tracking users, creating psychological profiles of the users and selling data to the highest bidders.

Microsoft is also known for creating tools and products which track employees and workers and provide nice looking dashboards and statistics for the employers. And they partner up with Palantir and other companies to create even more effective surveillance solutions for companies and law enforcement to use eventually. MS is a data company since a couple of years, just like Google or Meta is. Data is very valuable.

In the case of Microsoft Office and Teams, there’s also the issue of corporate espionage. Companies from all over the world are freely giving away sensitive data about their documents, employees and projects to a US-based megacorp. There was a time in history when this would be called corporate espionage which is supposed to be bad and illegal and so on. But, since they’re all doing it voluntarily, and there’s no definite proof of MS doing anything because it’s a black box and no one except MS can inspect what they’re doing, it’s apparently “fine”. It’s like we have collectively become dangerously naive.

So yeah, it’s all “fine”. Until it isn’t. Until it is revealed one day. Then we can all be shocked and say “how could they do this, how could they violate our trust like that, their marketing slides looked so nice and the consultant was so charming and said we needn’t to worry about anything they would keep our data safe”. Well, if you trusted them in the first place, that’s your mistake. You cannot trust a company like MS, Meta, Google, TikTok, and so on with a huge track record of privacy violations. Ever. Cloud = someone else’s computer. Host your own stuff. Prefer not to use software with proven track records of privacy violations. Don’t use products or services from companies with such track records. Prefer open source over proprietary because when the code is openly auditable that’s a plus for trustworthiness, and proprietary applications usually have a bad track record of privacy violations and other anti-user features, while open source software rarely includes such things.

And it’s only going to get worse. With upcoming things like Recall, that’s almost like having a permanent camera behind you recording your screen at all times. I feel bad for all Windows users, but on the other hand, I don’t actually have to care. Keep trusting them blindly, but please don’t be surprised when it will come crashing down on you one day.

Yes.

If you still want to play such “modern” games loaded with what is akin to spyware, I recommend a dedicated only-for-gaming PC (running Linux of course*) using a different IP address than your main system (probably a notebook), for example by using a VPN on one but not the other. I’d recommend using the VPN for the gaming machine, it’s less of a risk there, it allows for easy circumvention of geo-blocking, etc. If you need to access some services (e.g. chat) from both machines, create a separate account for it. Don’t share account credentials between machines. In fact, act as if the gaming machine is permanently infected with random stuff “required” for modern games, and isolate it accordingly. This is just an idea how to mitigate those problems and don’t let them creep into to your real machine where non-game-related data could leak out as a result. But you’re still going to support the developer doing this which is not recommended.

*) Why still no Windows, in this isolated case, you ask? Well, because it’s important to fight MS’ monopoly on gaming machines, so don’t support it by running it and contributing to its marketshare. Instead, run Linux and enjoy watching Windows’ sinking market share. In fact, if you can, don’t support such games either by not playing them, that would be the ideal solution. But this is written under the presumption that you or your friends still want to play it and you kind of feel left out otherwise.

Yeah, you should use Linux regardless. ;-)

While this does seem overly restrictive and out of place there, the result of this isn’t bad, because everyone should be at the most recent vesion at all times, period. If you aren’t, you’re exposed to more security holes and bugs. So it’s weird that that program forces you to do that, but it’s still not bad that you’re forced to do it. If you get what I mean. For some less-caring users who’d otherwise never install updates, forced updates are actually a net positive.

https://system76.com/laptops

https://www.tuxedocomputers.com/en/Linux-Hardware/Linux-Notebooks.tuxedo

Long-time GrapheneOS user here.

Can’t say anything about Motorola gestures.

Banking apps MIGHT not all work on GrapheneOS, if unsure check first, or ask on the GrapheneOS forum. I forgot the reasons but it’s probably something stupid like the banking app blocking any non-“Google-sanctioned” Android versions via the Play Integrity DRM kind of feature. It sucks, especially because GraphneOS is way more secure and private than any commercial Android, but what can you do, bad decisions are being done all the time.

GrapheneOS is my recommendation, it’s easy to install and can be used by tech-illiterate people as well because almost none of its security and privacy enhancing features require any special configuration work from the user or require advanced knowledge, it all happens mostly in the background with good default settings. Even for tech-savvy people this has the advantage of not requiring any tinkering or maintenance work, it feels like using any proprietary Android, just hardened and much more privacy-friendly.

You should still maybe be aware of these potential minor issues:

• Some apps might refuse to work on any “unsanctioned” Android version via the Play Integrity thing, but so far this seems to be very rare (thankfully). If you find any, make sure to tell the developers that they should stop doing that.

• Some apps might simply require Google Play services to be installed. On GrapheneOS, you can install them via the “Apps” app, and they will be slightly less terrible than they are on any other Android because they won’t run with full system rights, but instead they’ll be sandboxed and can be completely shut down by using the standard permissions system, which the user is blocked from doing on proprietary Android systems. But then again, if you must use them, then of course they’re going to require Network permission and they’ll use that to phone home to Google, as they always do on standard Androids as well. So it’s not recommended to install any proprietary apps from Google on top of GrapheneOS. Even though on Graphene, the amount of things an app is allowed to do is more limited compared to the huge amount of data an app can read and phone home on a propreitary Android system.

• Some apps include certain widgets like Google maps which, again, require the respective app or Play services app to be installed as well. Depending on how these apps are written, they might simply fail completely when this dependency is not there. But so far, I’ve had luck, and some apps I’ve used which integrate a Google maps widget still worked without it. So it depends on the app and the quality of its developers.

• When not having the Google play services installed (default), you won’t have access to Google’s push notification system in the cloud. Some apps, even some privacy-respecting apps like Signal, rely on that. Signal will work without, but then it uses a power-inefficient alternative based on websockets instead, which means Signal without Google play services drains your battery faster than it would otherwise. There are ways around this by using the Molly fork of Signal (Signal is open source and there is at least this one fork often being used as well) with the open source app “ntfy” and an either self-hosted or a privacy-respecting ntfy server instance somewhere to go along with it, which will then act as your own push notification server in the cloud. So you don’t need to contact Google’s stuff for that, and less connections overall to Google equals more privacy overall.

• If you do decide to install the Google play services app on Graphene, make sure to allow it to run in the background. But, again, it’s not recommended to use any proprietary Google apps/services.

• Once you have Graphene installed, be sure to use its integrated browser called Vanadium (a hardened Chromium fork) to download and install an “app store” of your choice. When I first started out, I installed the F-Droid apk first, then from within it Aurora as a Play Store client. Giving me access to a lot of open source and Play Store apps, respectively. F-Droid unfortunately has some potential disadvantages, which is why I recommend using Obtainium instead of the F-Droid client (you’ll still access the F-Droid repository sometimes because some APKs of open source apps are only hosted there, but at least you’ll avoid potential issues with the F-Droid frontend application then). Using Obtainium instead of F-Droid will be slightly more work at the beginning when compiling your needed open soruce applications, but afterwards it’s just as easy.

• Make sure to configure a privacy-friendly and ad/tracker-blocking DNS server, as well as something like RethinkDNS or NetGuard Pro to control which apps are allowed to contact which hosts/IPs. Otherwise, while Graphene itself won’t violate your privacy, many apps will still do that (especially proprietary apps often contain several trackers).

• If you need tutorial videos on how to install or initially configure Graphene, or Obtainium, watch the youtube channel “Side of Burritos”, excellent content.

If any of that sounds scary, it shouldn’t be. Most of these issues are really minor and it’s unlikely that you’ll be too negatively impacted by any of it, so give Graphene a try without Google services. There are great open source apps out there for all sorts of functionality. Just felt I should mention any potentially small pitfalls.

Other Android variants or ROMs are inferior to GrapheneOS in terms of security and privacy, unfortunately, so it’s best to buy a cheap Pixel (8th generation recommended due to strong hardware-based security) and install Graphene on it. Otherwise you’ll miss out on Graphene’s very strong security and privacy features. There are some other privacy and security oriented Android variants like Calyx or /e/OS or things like that, or even LineageOS, but they all, again, don’t reach up to Graphene’s level of security and privacy.

HTH

Get an external drive, it’s useful to have lying around for those rare occasions where you have something on an optical disc.

Clickbaity titles on videos or news sites is the new standard. I watched it. The point he’s making is basically that music was harder to make/produce some 50 years ago, so there was more incentive to “make it worth the effort”, compared to today. And the 2nd point he makes is that music consumption is now so easy as well (listen to whatever you want instantly) compared to when you could only listen to something when you bought the physical album, that there’s also less incentive for the listener to really get involved into some albums.

Personally I think these are valid points on the surface but they are not “the answer” to this kind of multi-faceted question. They’re at best a factor but we don’t know how big these factors are. Also I think one big reason he thinks that way is because he grew up in that environment and so he has a bias for “owning physical copies of albums”.

I also think music hasn’t gotten worse, the market is just simply over-saturated because there’s just way too much music, you’ll never be able to listen to it all. And there are absolutely hidden gems or really good bands/artists forming even today, it’s just much harder to find them. Generally a problem of today’s age: it’s likely that what you’re looking for already exists, you just have to find it within a whole ocean of content.

If you’re looking for innovative or non-standard stuff, you can always look at smaller artists or the indie scene, same is true for movies, games, music. The big producers always have a tendency to stick to what works and what’s proven to be popular so everything becomes similar. But smaller artists do not have to care about such things, they are ready to risk much more and in doing so, you might just create a real gem or something that was never or almost never tried before.

Yes. It’s basically about a ban or circumvention of E2EE, as usual. And as usual, this is not an option. Do not throw away your rights to strong, working encryption. Never.

deleted by creator

That doesn’t surprise me, and yes it was always because of anti-competitive practices, so I’m all for more neutrality, I’ll just add 2 shower thoughts:

1. Seeing that Brave is at the top of the browser list, I wonder how many selected Brave just because it’s at the top of the list and thought that this must be a good choice then, not because they actually like Brave.
2. It’s nice to have such a thing for browsers, but it would have to be expanded to other apps as well, e.g. mail client. Oh well, maybe in another 10 years or so.

“Extraordinary claims require extraordinary funding evidence.”

Yes. Even though not using all this crap may sometimes feel like you’re missing out on certain stuff, it is still the right thing to do. I don’t support abusive behavior, bloatware and spyware, so companies doing that will not receive any money from me if I can help it.

We’re basically just one step ahead of the general population, who basically (still) eats up anything that’s being served by big tech corporations, without any second thoughts or hesitations. The general population IMHO is currently at the stage that nerds were like 25 years ago, in that they tend to be naively enthusiastic about every new piece of tech. But nowadays, tech can be abusive towards their users, and so it’s important to choose the right tech. The general population hasn’t made that realization yet (or they don’t care, which also must change).

The media is also partly to blame for this, for example almost every new review of any Samsung or Apple phone is usually very positive, usually just reporting about the advancements in hardware and UI, without even mentioning any of the downsides these have on the software side. And so when reviews don’t even mention downsides anymore, there’s a lack of information available.

And it’s not even that regular users don’t like the alternatives. For example I convinced a friend to move from a regular spyware-infested Samsung Galaxy phone (which he was using all the time, and he even wanted to buy a new one) to a Pixel with GrapheneOS. He’s not missing anything, even though his transition wasn’t super smooth, overall he’s happier now, and he mentioned that he likes the OS being so clean and unencumbered. He doesn’t particularly care about the privacy and security improvements which he now also enjoys, which is a bit sad, but at least he’s happy with the lean and unmodified Android (open source) experience.

So, as usual, information/knowledge is power. People need to know that alternatives exist and that some alternatives are actually really, really good. And they need to know what the problems are with the “default stuff everyone uses”, so that they can make better informed decisions in the future. They also need to become less dependent on big tech companies. The alternatives have little to no PR and thus little public visibility in comparison, except via word of mouth, so we need to make the most out of that.