Main Page: Difference between revisions

From aangat.lahat
Line 35: Line 35:
Event and access logs are disabled so I don't know your IP address or how frequently you use the services, but I do have access to unencrypted data like sent emails and chats and attachments.
Event and access logs are disabled so I don't know your IP address or how frequently you use the services, but I do have access to unencrypted data like sent emails and chats and attachments.


Your data won't be viewed unless I'm investigating technical issues like abuse or spam. Make sure to use encryption if possible when using email (check out [https://mailvelope.com/en/ Mailvelope] or [https://delta.chat/en/ Delta Chat] or [https://gpgtools.org/ GPGTools]) or when using Jabber (check out [https://conversations.im/ Conversations], [https://chatsecure.org/ ChatSecure], [https://dino.im/ Dino], or [https://gajim.org/ Gajim]) or when sharing files (check out [https://hat.sh/ Hat.sh] or [https://github.com/HACKERALERT/Picocrypt Picocrypt]) for extra privacy. Consider deleting old data that you no longer need as well if possible.
Your data won't be viewed unless I'm investigating technical issues like abuse or spam. Make sure to use encryption if possible when using email (check out [https://mailvelope.com/en/ Mailvelope] or [https://delta.chat/en/ Delta Chat] or [https://gpgtools.org/ GPGTools]) or when using jabber (check out [https://conversations.im/ Conversations], [https://chatsecure.org/ ChatSecure], [https://dino.im/ Dino], or [https://gajim.org/ Gajim]) or when sharing files (check out [https://hat.sh/ Hat.sh] or [https://github.com/HACKERALERT/Picocrypt Picocrypt]) for extra privacy. Consider deleting old data that you no longer need as well if possible.


Backups are encrypted and stored on both Vultr and Rsync.net for redundancy.
Backups are encrypted and stored on both Vultr and Rsync.net for redundancy.
Line 41: Line 41:
==== Information collected ====
==== Information collected ====


* Email messages
===== Email messages =====
Email messages that are sent and received can be accessed by the administrator. They are not encrypted automatically at rest I encourage you to check out tools like [https://mailvelope.com/en/ Mailvelope] or [https://delta.chat/en/ Delta Chat] or [https://gpgtools.org/ GPGTools] with your contacts to encrypt them.
* Jabber and IRC messages

* Support emails
===== Jabber and IRC messages =====
* Files uploaded
Similarly to email, jabber and IRC messages are also unencrypted. I encourage you to look into [https://conversations.im/ Conversations], [https://chatsecure.org/ ChatSecure], [https://dino.im/ Dino], or [https://gajim.org/ Gajim] when using jabber. The IRC bouncer on this system (Quassel) does not have support for encryption.
* CalDAV (calendar) and CardDAV (contacts) entries

* RSS feeds being followed
===== Files uploaded =====
Files uploaded on bepasty aren't encrypted and thus can be accessed by the administrator. I encourage you to use [https://hat.sh/ Hat.sh] or [https://github.com/HACKERALERT/Picocrypt Picocrypt] before uploading any sensitive files.

===== CalDAV (calendar) and CardDAV (contacts) entries =====
Calendar events, contacts, to-do lists, and journals that you store on Radicale are not encrypted and can be accessed by the administrator.

===== RSS feeds being followed =====
The blogs and podcasts that you follow on Tiny Tiny RSS are not encrypted and can be accessed by the administrator.


==== Information not collected ====
==== Information not collected ====

Revision as of 23:03, 11 January 2024

What is Aangat Lahat?

Kamusta! Welcome to Aangat Lahat. Aangat means "to lift up" or "to rise up" and lahat means "all" so aangat lahat to me can mean either "we should lift each other up" as in mutual aid or "we should all rise up" as in to rebel against oppressive systems. So the services under Aangat Lahat is my way of offering some sort of digital mutual aid for online communications. The amount of time and resources that I can dedicate to support and dealing with abuse is limited, so membership is only offered to close friends, family, and people in my affinity groups.

For Current Members

If you have an account, you can find the dashboard in this page. From there, you can log in and manage the services that are available to you. If you run into any issues, check out the status page to see if the services are running or contact me on:

Services running

Communications

Members have access to various communications and productivity tools. These are running on FreedomBox and Debian under the hood.

  • Email
    • Your own email address with unlimited aliases.
  • Jabber chat
    • Instant messaging with audio/video calls.
  • IRC bouncer
    • Instant messaging, 90s style.
  • File sharing
    • Share files like images and videos.
  • Calendar, journals, contacts, and to-do lists
    • You can use it for productivity stuff, too!
  • RSS reader
    • Follow blogs, podcasts, etc.

Tor Relays

These Tor relays are a part of the broader Tor network and not at all exclusive to Aangat Lahat members! But they're listed here because they do fall under the same umbrella of mutual aid in the form of bits and bytes. Tor helps circumvent censorship and provides anonymity freely to anyone and these relays help increase the health of the network. I run 4 non-exit relays and 1 exit relay. All relays are running OpenBSD under the hood.

Privacy and security

Summary

Event and access logs are disabled so I don't know your IP address or how frequently you use the services, but I do have access to unencrypted data like sent emails and chats and attachments.

Your data won't be viewed unless I'm investigating technical issues like abuse or spam. Make sure to use encryption if possible when using email (check out Mailvelope or Delta Chat or GPGTools) or when using jabber (check out Conversations, ChatSecure, Dino, or Gajim) or when sharing files (check out Hat.sh or Picocrypt) for extra privacy. Consider deleting old data that you no longer need as well if possible.

Backups are encrypted and stored on both Vultr and Rsync.net for redundancy.

Information collected

Email messages

Email messages that are sent and received can be accessed by the administrator. They are not encrypted automatically at rest I encourage you to check out tools like Mailvelope or Delta Chat or GPGTools with your contacts to encrypt them.

Jabber and IRC messages

Similarly to email, jabber and IRC messages are also unencrypted. I encourage you to look into Conversations, ChatSecure, Dino, or Gajim when using jabber. The IRC bouncer on this system (Quassel) does not have support for encryption.

Files uploaded

Files uploaded on bepasty aren't encrypted and thus can be accessed by the administrator. I encourage you to use Hat.sh or Picocrypt before uploading any sensitive files.

CalDAV (calendar) and CardDAV (contacts) entries

Calendar events, contacts, to-do lists, and journals that you store on Radicale are not encrypted and can be accessed by the administrator.

RSS feeds being followed

The blogs and podcasts that you follow on Tiny Tiny RSS are not encrypted and can be accessed by the administrator.

Information not collected

  • IP addresses
  • Event logs when using the service
  • Name, phone number, or address