My privacy hardening tips are:
- Avoid 5-eyes, 9-eyes and 14-eyes countries[1].
- Don’t use CloudFlare or any CDN/AntiDDOS services because they decrypt all traffic that goes to and from your server[2]^. You don’t know what they do with it.
- DNS queries sent by the server should be encrypted[3] so that the ISP/data center cannot see them.
- If you want a VPS: try getting KVM instead of LXC one. It’s so easy to automate processes scanning on the fly[4]
Switzerland
Yep, my money goes to Switzerland. This message was brought to you by Proton.
Jokes aside, I do really have been using Proton Mail and VPN for quite some time.
Yes, proton is pretty awesome for privacy and security. And it’s also because the Swiss laws has made it possible.
Switzerland might still be a good choice, but the government also made some questionable laws which weakens piracy in the recent years.
Iceland
deleted by creator
Oh there’re quite a few. I like flokinet out of all. https://flokinet.is
Removed by mod
If your users are very vulnerable make sure that you don’t have the data to expose them ever.
aka disable any logs or delete them automatically, periodically.
deleted by creator
Switzerland, Iceland, Finland, Spain, Egypt,
Sweden, and some 3rd world countries that don’t really give a shit (though they might give a shit if your country makes them give a shit)Sweden is in the 14 eyes.
Woops. I’ll edit
Switzerland and Sweden
Are you serious right now? Protect privacy and free speech by hosting right in the imperial core? Bruh.
Here is an article that helps a bit with that.
It goes almost without saying that you definitely want to avoid the United States and even more so China, Russia and so forth.
@original_reader @Freez this is from 2019. Is this still actual? Probably not…
Somewhere in South America
Sweden or Switzerland have good laws for this.
Honestly self host with physical security. As long as your house isn’t raided your fine.
You could also setup a vps gateway that routes traffic over wireguard into a isolated environment at home. This should be better for privacy.