Android

警告: 提供給手機及平板電腦的Android作業系統常被修改、加入來自Google或其他來源的私有軟體而可能對你的隱私造成危害。我們強烈建議替換成Replicant (或者爲你的裝置編譯Android源碼).

推介閱讀: Mission Impossible: Hardening Android for Security and Privacy, by Mike Perry at The Tor Blog.

應用商店
私有軟體*
Amazon Appstore
Google Play
DNS
備註

Google公共DNS 持久性地记录你的运营商ISP和位置信息用于分析。你的IP地址也被存放24小时。

OpenNIC has not adopted an official policy concerning log query privacy/anonymization. More information here.

私有軟體*
Google Public DNS
電子郵件的代替品
備註

Bitmessage is a promising alternative to email, but it has not yet been audited by security professionals. Use at your own risk. If you decide to try out Bitmessage, make sure to generate a completely random ID to greatly reduce the probability of ID collisions.

RetroShare has not been thoroughly audited by security professionals for possible security issues.

私有軟體*
電子郵件用戶端
備註

Switching from a proprietary service like Gmail to one of the more transparently-run email services on PRISM Break is the first step to a secure email account.

The second step is getting you and your contacts to encrypt your plain text messages with PGP encryption. This section contains free email clients that support PGP.

Read the Email Self-Defense guide by the Free Software Foundation to learn how to encrypt your email messages.

Here is a guide by Security In A Box to encrypting your email with Mozilla Thunderbird, GNU Privacy Guard (GPG), and Enigmail.

Find out more about the differences between Mozilla Thunderbird and Icedove.

私有軟體*
電子郵件加密
備註

“Pretty Good Privacy (PGP) is a data encryption and decryption computer program that provides cryptographic privacy and authentication for data communication. PGP is often used for signing, encrypting and decrypting texts, e-mails, files, directories and whole disk partitions to increase the security of e-mail communications.”

Wikipedia

Read the Email Self-Defense guide by the Free Software Foundation to learn how to encrypt your email messages.

私有軟體*
企業套件
備註
「企業套件」分類中列出了一些適合公司或組織使用的軟體套裝,往往是包含了10種以上不同總類工具的合集(大都支持統一登錄特性)。
私有軟體*
即時通訊
備註

“Off-the-Record Messaging, commonly referred to as OTR, is a cryptographic protocol that provides strong encryption for instant messaging conversations. OTR uses a combination of the AES symmetric-key algorithm, the Diffie–Hellman key exchange, and the SHA-1 hash function. In addition to authentication and encryption, OTR provides perfect forward secrecy and malleable encryption.

The primary motivation behind the protocol was providing deniability for the conversation participants while keeping conversations confidential, like a private conversation in real life, or off the record in journalism sourcing.”

Wikipedia

Wikipedia

Note that Pidgin stores your IM account passwords in plain text. You can avoid this by (1) not saving your password in Pidgin, (2) encrypting your file system, or (3) storing your Pidgin password securely with the Debian package pidgin-gnome-keyring.

Pidgin with OTR and dbus enabled has a local security bug. See the upstream bug report for more information and possible workarounds.

私有軟體*
AOL Instant Messenger
Apple Messages
Facebook
Google Allo
Google Hangouts
ICQ
LINE
Skype
Tencent QQ
Trillian
Viber Messenger
WeChat
WhatsApp
郵件伺服器
備註

A beginner’s guide to running your own mail server is available here: “NSA-proof your e-mail in 2 hours”.

Kolab integrates Roundcube into its webclient and offers desktop clients as well. Recent versions also feature a file cloud turning it into a complete solution for personal information management.

What is an MTA?

“Within Internet message handling services (MHS), a message transfer agent or mail transfer agent (MTA) or mail relay is software that transfers electronic mail messages from one computer to another using a client–server application architecture. An MTA implements both the client (sending) and server (receiving) portions of the Simple Mail Transfer Protocol.

The terms mail server, mail exchanger, and MX host may also refer to a computer performing the MTA function. The Domain Name System (DNS) associates a mail server to a domain with mail exchanger (MX) resource records containing the domain name of a host providing MTA services.”

私有軟體*
作業系統 (手機)
備註

iOS & WP are proprietary operating systems whose source code are not available for auditing by third parties. You should entrust neither your communications nor your data to a black box device.

私有軟體*
BlackBerry
CyanogenMod
Google Android
Microsoft Windows Phone
視頻與音頻
私有軟體*
Apple FaceTime
Facebook
Google+
Skype
TeamSpeak
VPN 用戶端
私有軟體*
瀏覽器外掛
備註

Installing your own add-ons into the Tor Browser is not recommended, as they may bypass Tor or otherwise harm your anonymity and privacy. Check the EFF's Panopticlick to see how trackable your browser configuration is by third parties.

If you're using a Firefox-based browser, you can safeguard your browsing habits and stop advertising companies from tracking you by installing uBlock Origin, Request Policy, and HTTPS Everywhere.

A more advanced alternative to Request Policy would be uMatrix.

Install NoScript and enable ‘Forbid scripts globally’ to improve the security of your browser by preventing 0day JavaScript attacks. This is a drastic option as it will render many websites unusable as they rely heavily on JavaScript. NoScript offers a whitelist you can use to selectively enable JavaScript for sites you trust, but this is considered especially bad for your anonymity if you're using NoScript with the Tor Browser Bundle.

Why is Adblock Plus not recommended? Adblock Plus shows “acceptable ads” by default, which works against the purpose of the add-on. Either disable acceptable ads or use uBlock Origin instead.

私有軟體*
Ghostery
瀏覽器
備註

Use a combination of Tor Browser and a free web browser of your choice to the surf the web.

Try to use Tor Browser as often as possible. Browsing is slower with Tor, but far more secure.

Note: Mozilla Firefox is technically not completely free software, as Mozilla recommends non-free add-ons on their website.

私有軟體*
Google Chrome
Opera
Yandex.Browser