Search
What browser do yall use?
I want to switch to a more privacy focused browser, would like to hear what yall use currently and why.
Edit: I’m currently using edge.
Edit: Thanks everyone for your input. I have decided to go with floorp (a firefox fork) with betterfox. Here's my decision process,
- Firefox based browser
- To help with browser monopoly
- I really like the sidebery extension
- I chose floorp instead of ff or other ff forks because of the ease of customization
- I also tried zen browser but experienced a bug just from my short usage so I think it's not mature enough for me currently, but I do like the project.
- Betterfox + extensions for better privacy settings
- Ublock Origin
- ClearURLs
- Decentraleyes
Did not choose to go with LibreWolf, Mullvad etc because I'm worried about site breakages.
Bringing attention to a music player and two eBook readers for Android
I didn't want to make two separate posts for these, so I am combining them into one. The two hardest apps to find for Android were a music player capable of playing local files, and an ebook reader with a nice design. With some help from the community, I was able to find nice apps for both of those. All apps here are available to install via Obtainium. My goal here is to raise awareness for some unknown but high quality apps that I have found.
Music player: VLC
Credit: @[email protected], @[email protected], @[email protected]
I have tried plenty of music players, and most of them are either copies of each other, are lacking in features, or are just plain buggy. Despite what I expected, VLC is actually the best choice in this category.
Besides being a must-have in general, VLC actually has fantastic support for music management. It has plenty of customization, however I found that the Black theme did not work. Besides that, it has support for folders, creating playlists, playback history, albums, artists, genres, shuffling, queue management, equalizers, sleep timers, playback speed, A-B repeat, and so much more. It is honestly exactly what I was looking for, with a sleek UI and very feature packed. It's nothing like the desktop app.
eBook reader: Book's Story
It was a struggle to find an eBook reader with nice usability. I managed to find two that are very promising. One such reader is Book's Story.
Book's Story offers a completely offline experience to managing and reading eBooks. It's what I would want if I were to code an eBook reader, with a nice Material design and a minimalistic layout. However, there are things I don't like about it. For starters, it doesn't correctly read my eBooks. That's honestly disappointing, since that means the app is currently dysfunctional, but I am including it in this list because I have high hopes for it. There is also no page turning view, which isn't bad, but it's a feature I look forward to. Overall, I don't currently recommend using this, but in the future I can easily see it becoming one of the best eBook readers out there.
eBook reader: Myne
Unlike Book's Story, Myne is able to read all of my eBooks just fine. Myne is an even more polished eBook reader, also with support for downloading eBooks from the internet in the app.
It too lacks in a page turning view, and doesn't allow you to customize which screen is your default. The second one is slightly annoying because if you are offline and open the app the first thing you see is a 404 page. You can still view your offline ebooks, of course, but it would be nice to select which page is the default. Furthermore, while it was able to read my eBooks well enough, there are still a few minor HTML artifacts visible in the book. If I was able to merge the layout of Book's Story with the design and functionality of Myne, it would become the perfect eBook reader.
I'd love to see where both of these projects go, and even in their current state they beat some of the most popular eBook readers in my opinion, such as Librera and KOReader.
If you use Instagram/Facebook/Messenger, check the "off Meta technologies" section. Your other apps may be sending data without you knowing
Even if you don't enter data into Facebook/Meta directly, they may be getting data from other games/music apps/etc.
How to check
- Navigate to the
Accounts Centermenu.- Instagram: open your profile page > 3 bar menu >
Settings>Accounts Center - Messenger: 3 bar menu > gear icon > scroll to bottom >
Accounts Center
- Instagram: open your profile page > 3 bar menu >
Your information and permissionsYour activity off Meta technologies
There should also be an option for Manage future activity
---
I use some apps to communicate with family, and clearly my privacy protections weren't as good as I thought they were. I set things up a long time ago, so I imagine something changed since then.
I'm considering of either sending the apps to the work profile, or switching to only using them in the browser. If it's because I connected my account to the other service at some point, I don't know how to sever that connection now aside from dropping that other game/app/service
I need a new phone but I want to do this right
(Please when answering, assume I’m not a beginner at privacy/programming :) I know where the good stuff at)
First off, shameful confession: I’m writing this on a dying yellow iPhone XR I bought second-hand three years ago (189€). I absolutely love the look of it: the screen, build quality, are all amazing. The only problem was the locked ecosystem (sideloading Spotify/Torrent client was sooo hard).
I saw the android phone of my mother dying really fast. She currently has a Xiaomi phone that’s ridiculously big for my hands, there’s advertisements in the stocks apps (?!!), the UX is janky and everything. It looks like a bloat, privacy nightmare.
So… because it’s impossible to find a jailbreakable phone nowadays I need to buy an android and ideally I would want:
- Good screen (vivid colors)
- Good build quality (not shitty plastic)
- Don’t care about the camera (I don’t want those ridiculously big cameras they make nowadays)
- Would want to install either GrapheneOS/LineageOS
The things that scare me off:
- I really need my bank app and I need it updated so I have to use Google Play Services but I don’t want it to plague my phone with privacy bullshit (I want to be degoogled)
The things that excite me:
- Customization possibilities
- Learning experience
- Even more privacy than a de-googled IOS phone :)
- F-Droid!! (Maybe I’ll find a beautiful IRC client)
- More choices for Mastodon & Lemmy clients
- Freedom of free software.
- client for open-source git providers :)
But to get all of that, I don’t want Google, I need shitty apps (non-free software) I have to install:
- Instagram (for non-technical friends)
- GitHub (job & open-source)
- No-Ad Modded Spotify from Balatan
- Discord (gamer friends)
- Telegram (cryptobros friends)
- Steam (because I still love gaming)
Any advices? Phone ideas? I’m so lost in this ocean of choice (freedom ✨)
My current phone:
Finally resolved: Recovering data after wiping metadata is actually possible, but I need you help with some info
I need to ask a small favor from the good people of Lemmy.ml Community.
In short, I accidentally wiped the metadata partition on my Poco F3 and now I can't boot into the OS and access my data. I have a lot of pictures, videos and other stuff that I would hate to lose, because of a mistake. But all that is still on the phone, I just can't boot the phone to access it.
Thankfully, there is a way to fix this by creating a full backup of the phone with adb, then using a HEX Editor to manually look through that gigantic file and try to find the files that were in that metadata partition.
A huge thanks to bluet33th, a user from XDA Forums, without whom I would be helpless and couldn't do any of this. It might be a bit complicated and manual process, but it is possible. He explained everything in great detail here, so check it out, especially if you are facing the same problem, this will help you tremendously: https://xdaforums.com/t/how-to-recover-data-if-metadata-partition-was-deleted.4686789/
In order to find these files and put them back where they belong, I need your help, because I have to know their names, exact sizes and at least part of their content, so that I can search for it. Because I'm searching for a specific text in a text file that is 128 GB in size.
I have already tried this on another Xiaomi phone, to make sure this procedure works on Xiaomi phones and it does, but that phone had HyperOS with Android 14 and since every phone and android version is probably different, in order to be sure, I need this information specifically for Poco F3 with Android 13.
It doesn't take long, but if you don't have the time to look inside your metadata partition and tell me which files are inside of that partition and their sizes in bytes, you can just make a backup of the metadata partition and sent it to me, and I'll do the rest of the work.
Here are the steps on how to create a backup:
- Turn on your phone and boot into
TWRP, then connect your phone to a PC, typecmdinside Windows search and run cmd, then position cmd into yourplatform-toolsfolder (if you flashed your ROM, you should already have the necessary drivers installed for the next steps to work). For example, if yourplatform-toolsfolder on Windows is insideC:\platform-tools, all you need to type into cmd is:cd C:\platform-tools
You can also just go inside your platform-tools folder and type cmd in the address bar and the cmd will start already positioned inside that folder.
- Then type
adb devicesand you should see your device, if you do, that means that all the drivers are successfully installed and your phone is detected.
- Type
adb pull /dev/block/by-name/metadata
- After that, you should see a file named
metadatainsideC:\platform-tools. That is the file that I'm looking for and as you can see, it takes just a few minutes to get it.
You can skip the next steps (5 and 6), but I'll explain them, just in case someone wants to extract these files for themselves, so that you have them in case something like this happens to you. Of course, you can also proceed to extract the files and tell me their names and sizes.
Here is what you need to do:
-
Extract the content of the
metadatafile, you can use a software like7-Zip. Go inside that extracted folder, then intovold > metadata_encryption > key -
Inside of that
keyfolder, you should see a few files. These are the important files and save them somewhere safe in case you ever need them. Since I don't have them anymore, in order to recreate them, I need to know their exact names and sizes in bytes. You can check the size of every individual file by right clicking on the file and choosingProperties. Then look underSize, notSize on disk, and in parenthesis, you should see the size in bytes.
Please, if you could check the size of every file and write down which file has what size. I would really appreciate it.
I'm specifically looking for someone who has a Poco F3 with Android 13 and MIUI, because I'm not sure if HyperOS changed something, so maybe the number of files or their size is different. But feel free to post the information even if you have HyperOS, but please mention that, so that I am aware of it.
Thanks a lot for your help, it really means a great deal.
Company creates "solution" to address school "vaping incidents".
Some of the LinkedIn Responses are direct and on-point, and also hilariously/depressingly based depending on how you look at it:
EDIT: In hindsight, I think I should've looked into posting this in a different community.. It's closer to a silly "innovation".. soo.. is this considered FUD? I also don't support smoking or vaping, especially among kids. Original title had "privacy-violating" before the "solution".
PSA: Git exposes timezone metadata
Git records the local timezone when a commit is made [1]. Knowledge of the timezone in which a commit was made could be used as a bit of identifying information to de-anonymize the committer.
Setting one's timezone to UTC can help mitigate this issue [2][3] (though, ofc, one must still be wary of time-of-day commit patterns being used to deduce a timezone).
References
- Git documentation. git-commit. "Date Formats: Git internal format". Accessed: 2024-08-31T07:52Z. https://git-scm.com/docs/git-commit#Documentation/git-commit.txt-Gitinternalformat.
> It is
<unix-timestamp> <time-zone-offset>, where<unix-timestamp>is the number of seconds since the UNIX epoch.<time-zone-offset>is a positive or negative offset from UTC. For example CET (which is 1 hour ahead of UTC) is+0100. - jthill. "How can I ignore committing timezone information in my commit?". Stack Overflow. Published: 2014-05-26T16:57:37Z. (Accessed: 2024-08-31T08:27Z). https://stackoverflow.com/questions/23874208/how-can-i-ignore-committing-timezone-information-in-my-commit#comment36750060_23874208.
> to set the timezone for a specific command, say e.g.
TZ=UTC git commit - Oliver. "How can I ignore committing timezone information in my commit?". Stack Overflow. Published: 2022-05-22T08:56:38Z (Accessed: 2024-08-31T08:30Z). https://stackoverflow.com/a/72336094/7934600 > each commit Git stores a author date and a commit date. So you have to omit the timezone for both dates. > > I solved this for my self with the help of the following Git alias: > > ``` > [alias] > co = "!f() { \ > export GIT_AUTHOR_DATE=\"$(date -u +%Y-%m-%dT%H:%M:%S%z)\"; \ > export GIT_COMMITTER_DATE=\"$(date -u +%Y-%m-%dT%H:%M:%S%z)\"; \ > git commit $@; \ > git log -n 1 --pretty=\"Autor: %an <%ae> (%ai)\"; \ > git log -n 1 --pretty=\"Committer: %cn <%ce> (%ci)\"; \ > }; f"
---
Cross-posts:
- https://sh.itjust.works/post/24495744
- https://sh.itjust.works/post/24495795
Increase privacy by using nginx as a caching proxy in front of a map tile server
A tutorial featuring two examples showing how you can increase your privacy using nginx to proxy third-party services.
This is a guide I wrote for Immich's documentation. It features some Immich specific parts, but should be quite easy to adapt to other use cases.
It is also possible (and not technically hard) to self-host a protomaps release, but this would require 100GB+ of disk space (which I can't spare right now). The main advantages of this guide over hosting a full tile server are :
- it's a single nginx config file to deploy
- it saves you some storage space since you're only hosting tiles you've previously viewed. You can also tweak the maximum cache size to your needs
- it is easy to configure a trade-off between map freshness and privacy by tweaking the cache expiration delay
If you try to follow it, please send me some feedback on the content and the wording, so I can improve it
Chat control is back on track.... again
Chat control is back on the agenda again and the works is kept in secret.
AOSP with MicroG vs Nextdns with good lists
AOSP with MicroG vs Nextdns with good lists
How better is AOSP or Graphene OS with MicroG or Sandboxed google services compared to just using NextDNS with some good filters. I mean microg or graphene os will still connect to internet for google stuff I use. Also I can block internet access for a domain using NextDNS which is quite similiar to cutting network access in graphene OS. So how come stock android with NextDNS is less private than MicroG/GrapheneOS. @privacy
Mozilla will soon remove its telemetry service Adjust from the Android and iOS versions of browsers Firefox and Firefox Focus. It appeared that the
For Android users seeking a privacy-focused browser, Privacy Guides recommends Mull: >Mull is a privacy oriented and deblobbed Android browser based on Firefox. Compared to Firefox, it offers much greater fingerprinting protection out of the box, and disables JavaScript Just-in-Time (JIT) compilation for enhanced security. It also removes all proprietary elements from Firefox, such as replacing Google Play Services references.
>Mull enables many features upstreamed by the Tor uplift project using preferences from Arkenfox. Proprietary blobs are removed from Mozilla's code using the scripts developed for Fennec F-Droid.
Telegram founder’s arrest is radical — if it’s a crime to build privacy tools, there will be no privacy
Pavel Durov's arrest suggests that the law enforcement dragnet is being widened from private financial transactions to private speech.
>Pavel Durov's arrest suggests that the law enforcement dragnet is being widened from private financial transactions to private speech.
>The arrest of the Telegram CEO Pavel Durov in France this week is extremely significant. It confirms that we are deep into the second crypto war, where governments are systematically seeking to prosecute developers of digital encryption tools because encryption frustrates state surveillance and control. While the first crypto war in the 1990s was led by the United States, this one is led jointly by the European Union — now its own regulatory superpower.
>Durov, a former Russian, now French citizen, was arrested in Paris on Saturday, and has now been indicted. You can read the French accusations here. They include complicity in drug possession and sale, fraud, child pornography and money laundering. These are extremely serious crimes — but note that the charge is complicity, not participation. The meaning of that word “complicity” seems to be revealed by the last three charges: Telegram has been providing users a “cryptology tool” unauthorised by French regulators.
Zen Browser | Privacy focused, open-source, Firefox Fork
Just stumbled upon this project, seems rather new as my DNS blocked its domain by default for being too new hehe.. Anyone had a chance to try it yet? Its got some hefty promises, like having equally strong privacy features as Librewolf. I'll be giving it ago at least, almost sounds a bit too good to be true...
Please talk me down: "I'm just doing my job" is the new "I was just following orders".
The only thing worse than an echo chamber is letting a self-created bad idea fester in the head.
I came to the conclusion a few months ago that software developers and coders who worked at Meta, Google, Amazon, etc are as culprit as their CEOs and the company itself. I will lay down my points below, but I understand that this might be a logical extreme of my distaste for these corporations.
Here's my rationale:
- Actions of the company they serve: The corporations they serve actively disenfranchise users, track them, sell their private / personal information to unscrupulous parties without any care on how it affects the person, or the society. They thrive on engagement rather than content. They have "commodified" the fundamental right to privacy. This has real world implications that has directly resulted in the spread of misinformation, political unrest, threatened elections, riots, and deaths of thousands of people.
- Awareness of the consequences: By virtue of their position, these are people with the capacity to read, and think for themselves. There are news articles: across the political spectrum in all major news sites, that report how the platform/ company they serve negatively affects society. Facebook's Cambridge Analytica fiasco, Snowden's expose, etc are credible and well documented examples that even non-tech people are aware. Yet they choose to ignore all this, and continue working / seek to join these companies.
- Cowardice: It is often wrapped in the garb of "self-interest", but they do not raise their voice when they know that the software and platform they're told to develop is going to be used to spy on their brethren. They claim they're trying to make a living, but can use their skills to develop counter products to these horrible companies, or work for those that are sensitive and conscientious towards customer's needs and welfare.
NSA Asked Linus Torvalds To Install Backdoors Into GNU/Linux
The NSA has asked Linus Torvalds to inject covert backdoors into the free and open operating system GNU/Linux. This was revealed in this week's...
repost from: https://falkvinge.net/2013/11/17/nsa-asked-linus-torvalds-to-install-backdoors-into-gnulinux
Google ramps up its campaign against ad blockers on Chrome.
> Google's campaign against ad blockers across its services just got more aggressive. According to a report by PC World, the company has made some alterations to its extension support on Google Chrome.
> Google Chrome recently changed its extension support from the Manifest V2 framework to the new Manifest V3 framework. The browser policy changes will impact one of the most popular adblockers (arguably), uBlock Origin.
> The transition to the Manifest V3 framework means extensions like uBlock Origin can't use remotely hosted code. According to Google, it "presents security risks by allowing unreviewed code to be executed in extensions." The new policy changes will only allow an extension to execute JavaScript as part of its package.
> Over 30 million Google Chrome users use uBlock Origin, but the tool will be automatically disabled soon via an update. Google will let users enable the feature via the settings for a limited period before it's completely scrapped. From this point, users will be forced to switch to another browser or choose another ad blocker.
Use a password manager
It is truly upsetting to see how few people use password managers. I have witnessed people who always use the same password (and even tell me what it is), people who try to login to accounts but constantly can't remember which credentials they used, people who store all of their passwords on a text file on their desktop, people who use a password manager but store the master password on Discord, entire tech sectors in companies locked to LastPass, and so much more. One person even told me they were upset that websites wouldn't tell you password requirements after you create your account, and so they screenshot the requirements every time so they could remember which characters to add to their reused password.
Use a password manager. Whatever solution you think you can come up with is most likely not secure. Computers store a lot of temporary files in places you might not even know how to check, so don't just stick it in a text file. Use a properly made password manager, such as Bitwarden or KeePassXC. They're not going to steal your passwords. Store your master password in a safe place or use a passphrase that you can remember. Even using your browser's password storage is better than nothing. Don't reuse passwords, use long randomly generated ones.
It's free, it's convenient, it takes a few minutes to set up, and its a massive boost in security. No needing to remember passwords. No needing to come up with new passwords. No manually typing passwords. I know I'm preaching to the choir, but if even one of you decides to use a password manager after this then it's an easy win.
Please, don't wait. If you aren't using a password manager right now, take a few minutes. You'll thank yourself later.
"[Stupid rich person shit]"
--Larry Ellison, soon to be major shareholder of Paramount
Here's a little story that shows how much society has become dystopian:
Back in the 90's, I worked in France for a while. When I was there, a case was brought up against the state that had violated a CNIL rule: some dude was cheating on his taxes by claiming he lived at some address. Tthe French fiscal administration sued him because they obtained a file from the electricity company and another from the water utilty company showing that the consumption of both electricity and water were so low it wasn't consistent with the dude actually living there.
The case was thrown out, the dude walked and the state was fined because it had violated a rule that clearly stipulated cross-referencing files for the purpose of extracting secondary information that wasn't available in each single file was a violation of privacy and civil liberties.
I shit you not. This used to be a thing.
Can you imagine this today? All the Big Data sonsabitches cross-reference billions of files ALL THE TIME and nobody bats an eyelid anymore.
If you're old enough, you remember sovereign states taking privacy seriously. If you're not, you don't. And that's how Big Data gets away with what they do today because fewer and fewer people remember a time when it was unacceptable.
No South Korea nodes in Mullvad's server list. Perhaps other providers do? I don't think SK is a popular destination for exit nodes since it has a strong censorship against pornography among others.
[…] more than 60 Hz. Most phones on the market don't even support it.
Just checked. Most phones within the 400€ - 800€ price range support more than 60Hz.
Of 591 devices, only 176 feature a 'unknown' or <90Hz refresh rate. 415 support >=90Hz, 382 support >=120Hz and 48 models go to >=144Hz. It has become a fairly common feature.
The first XKCD that comes to mind
Ellision sounds like the kind of guy that wants an unstoppable army of robot swarms.
Representative Jamie Raskin recently brought up the term neo-monarchy.
To evade taxes of course.
Have you ever asked yourself how it's possible that ALL the fucking ultra-rich almost without exception do philanthropy?
It doesn't make sense: most of those millionaires and billionaires are psychopaths who essentially don't give a shit about their fellow man, acquired their wealth by exploiting and shafting others for the most part, and don't give a shit about how that makes them look: why on Earth would any of them do philanthropy, let alone all of them?
It only starts to make sense when you understand philanthropy is yet another tax loophole.
AI camera VS. A .45 Magnum
Tune in next decade to find out who will win this epic battle.
Edit: Why does this guy look like Adam Sutler from V for Vendetta?
“Citizens” 🙄 Not every person is a citizen; I’ve got a pet peeve about this.
My latest favourite is missing: Note Taking Apps:
Joplin is good for organising text-based notes, so I'm not surprised to see that on your list. But xournal is a for mixed drawing / hand-writing / text, etc. So it's a different use-case to Joplin. (It would be perfect if Joplin supported xournal notes; so that you could write with xournal and then organise with Joplin. ... But that hasn't yet come to pass.)
Agree on the versioning issue. In fact I mentioned that the issue is convenience here. It is also data corruption, but you probably are aware of that if you setup something like this. Manually merging changes is extremely annoying and eventually you end up forgetting it to do it, and you will discover it when you need to login sometime in the future (I used keepass for years in the past, this was constantly an issue for me). With any natively sync'd application this is not a problem at all. Hence +1 for convenience to bitwarden.
However KeePassXC's sync feature does sync the vault.
How does it work though? From this I see you need to store the database in a cloud storage basically.
For mobile I just give syncthing full permission to run in the background and have never had issues with the syncing on the folders I designate.
I use this method for my notes (logseq). Never had synchronization problem, but a lot of battery drain if I let syncthing running in the background.
Nothing else passes through it unless you opt into using relaying in case you have NAT issues.
I guess this can be very common or even always the case for people using some ISPs. In general though, you are right. There is of course still the overall risk of compromise/CVEs etc. that can lead to your (encrypted) data being sent elsewhere, but if all your devices can establish direct connections between each other, your (encrypted) data is less exposed than using a fixed server.
If you are paranoid, the software is open source and you can host your own relays privately,
This would also defeat basically all the advantages of using keepass (and family) vs bitwarden. You would still have your data in an external server, you still need to manage a service (comparable to vaultwarden), and you don't get all the extra benefits on bitwarden (like multi-user support etc.).
To be honest I don't personally think that the disclosure of a password manager encrypted data is a big deal. As long as a proper password is used, and modern ciphers are used, even offline decryption is not going to be feasible, especially for the kind of people going after my passwords. Besides, for most people the risk of their client device(s) being compromised and their vault being accessible (encrypted) is in my opinion way higher than -say- Bitwarden cloud being compromised (the managed one). This means that for me there are no serious reasons to use something like keepass (anymore) and lose all the convenience that bitwarden gives. However, risk perception is personal ultimately.
What are you talking about, that's mine scumbag!
Reminds me of the bash.org Napster entry. For posterity:
#104052 + (14264) - [X]
<NES> lol
<NES> I download something from Napster
<NES> And the same guy I downloaded it from starts downloading it from me when I'm done
<NES> I message him and say "What are you doing? I just got that from you"
<NES> "getting my song back fucker"
Hey, I outlined some tools in my list here! TL;DR is Proton Mail + addy.io is as good as it gets, with Tuta and SimpleLogin as close contenders. Good luck!
There's often the 'security vs. convenience' tradeoff, but for most people you have both sides with Bitwarden over KeePass.
Bitwarden is undoubtedly more convenient. If you can create an account, you can use it. I have a family account, and have both of my parents using it. The love it now, but given the friction to get them there in the first place, it would impossible to get them on KeePass. Especially because they wanted their passwords on all devices.
Regardless of using Vaultwarden or KeePass, you need to have quite a bit of expertise to self host. And you are trusting your own ability to secure your attack surface. I'm sure many if not most in this thread can, but it would take me quite a while to convince myself I have. I would much rather trust security professionals.
Somewhat, although, potentially related. Have you seen Bitwarden's git repos? It is immaculately organized.
Consistent, clear naming convention. There is literally one called 'self-host'. If you put that much effort into keeping your code that useable/available/auditable etc. Oh yea. I'm going to trust you to handle security for me
Runbox, a privacy-focused email provider out of Norway. Our family has been using it for many years with zero issues. The prices are very decent.
I went through this journey looking for new providers recently after Proton started doing crypto shit. Tuta and Fastmail were the main recommendations, though the former has been accused of being a honeypot and the latter has really awful practices toward workers and unionisation.
I went with Migadu as a no-nonsense solution, and I'm over the moon with it.
As a big fan of decentralisation and federation, I was very tempted to try out Disroot, but I wasn't ready to try it out with my main mailboxes. I'll likely use it for any upcoming toy projects I embark on though.
Aside from not wanting to rely on the same one as everyone else in the world, setting up port forwarding on proton looks unreasonably complicated.